Event banner
Event details
Join us for an exclusive Ask Me Anything (AMA) session focused on Security and Data Governance for Copilot for Microsoft 365 on Wednesday, June 12th, from 9:00 AM to 10:00 AM PST. This ses...
Sarah_Gilbert
Updated Jun 12, 2024
Hej,
I'd like to ask on data privacy compliance, especially for the EU. (or is there a specific EU-AMA?)
1. I understood there is a data processor agreement for O365-Copilot licences and that those data will not be used for training of the general model.
2. But all data within a tenant is used for training the tenants model, right?
3. However, there might be data (e.g. employee health data) which should not be read by CoPilot.
How can I exclude sensitive data, specifically protected e.g. by Art. 8 GDPR? (some other comment asked for labelling?)
4. How can I exercise data subjects rights of deletion?
a) How can I delete personal data once it has been read by Copilot?
Or how can I describe and demonstrate, that Copilot does not hold a copy of that data?
b) How can I answer data access requests? What should I answer on what Copilot knows about an individual?
c) How can I correct personal data in Copilot? Are there rights to do that or can anybody modify it?
Best regards from Germany
- Thank you for your detailed questions. To ensure each of your queries receives the appropriate attention during our AMA, please post each question as a separate comment. This approach helps us provide more focused and detailed answers and makes it easier for other community members to find relevant discussions. We appreciate your cooperation and look forward to addressing your questions.
