Office 365 CDN compliance standards

Brass Contributor

We have some concerns for a client that is using Office 365 and we were going to enable the Office 365 CDN (Private), however we noticed the warning message that it is a feature built on a 3rd-party application and data center owned by the 3rd party with privacy and compliance standards that differ from the commitments outlined by Microsoft O365 Trust Center.


Can we get more detail on this 3rd party CDN provider and what compliance standards they have? Our client has certain regulatory compliance that needs to be met and we need to verify if the 3rd party CDN would satisfy their requirements.



5 Replies
BUMP - Can anyone provide insight on the 3rd party used for the CDN?

I do not know who they use for the SPO CDN capability.  


What I do know is that if you are using an Azure CDN, the providers are Akamai and Verizon.  Both are listed on the pricing page for the Azure CDN.  I'd be surprised if it is not one of those.


Azure Content Delivery Network (CDN) Pricing

Howdy! The two most common CDN's Office 365 uses are Akamai and Azure. Please see this page on how CDN's work in Office 365

Thanks! I had figured it was probably Akamai networks.

I was concerned however about the warning that appears when you enable the O365 CDN through PowerShell about it not being covered by their data/security policies and it was a 3rd party when dealing with a client that has regulatory requirements.

We have the same issue - I need specifics on what compliance / security policies the Private CDN offers.  Do we have an official document anywhere?  It's unlikely our compliance department will accept "probably Akamai".