Sep 17 2019
11:07 PM
- last edited on
Nov 30 2021
10:04 AM
by
TechCommunityAP
Sep 17 2019
11:07 PM
- last edited on
Nov 30 2021
10:04 AM
by
TechCommunityAP
I'm looking for information about which personal data is transferred to the cloud.
I need the privacy relevant information for certifications according to TISAX or ISO 27001 and the European GDPR.
For example, which fields of an AD object (username, address...) transferred?
Is there more detailed information than this?
https://docs.microsoft.com/de-de/azure-advanced-threat-protection/atp-technical-faq
Thank you very much,
Best Regards,
Ralf
Sep 18 2019 05:05 AM
Oct 07 2019 01:36 AM
Thanks for your reply.
Are passwords or hashes also transferred to Azure ATP?
I couldn't find any information about this.
Best Regards,
Ralf
Oct 10 2019 04:13 AM
Solution@Ralfxyz , no, we do not sync passwords or hashes of AD entities.
The only passwords we keep are for the read only account/accounts you supply in the portal configuration page, so we can connect to AD to read info etc.
Those passwords are of course kept secure, yet we still recommend to use read only low privileged accounts for this.
Oct 10 2019 04:13 AM
Solution@Ralfxyz , no, we do not sync passwords or hashes of AD entities.
The only passwords we keep are for the read only account/accounts you supply in the portal configuration page, so we can connect to AD to read info etc.
Those passwords are of course kept secure, yet we still recommend to use read only low privileged accounts for this.