Compliance document custody – Office 365

Posted by

Hi,
I’m wondering what is the ISO or certification about document custody compliance and how SharePoint Online is managing and complying.
Can you help me?
Compliance Certifications for Office 365

Don’t quite understand your question. Can you elaborate? Which/who’s custody compliance are you looking to see if O365 is meeting?

 

I’m looking for the certification that supports the document custody. With that verify if the SharePoint Online complies.

With that my questions are: Is there (exists) a ISO or certification for custody or record management?
Does SharePoint Online supports and complies with that?

Thanks in advance

——————————
Latourrette Consulting
——————————

I think the document custody compliance is implied on the ISO 27001 certification that Office 365 shows, take into account that document control is a critical part of the certification process and that includes the compliance and recordkeeping.

let me know if you are agree with my answer or please be more specific.

Regrds,

——————————
Halliburton Worldwide Limited
——————————

if document custody compliance is implied on the ISO 27001 I agree with you. Thanks!

——————————
Latourrette Consulting
——————————

Just in case: be aware that this certificate is only part of the answer. When you implement your processes using Office 365, these processes are not by default compliant too. There is work to do on your end as well.

There is additional information available about ISO/IEC 27001:2013 Information Security Management Standards on Office 365 Trust Center (Microsoft Trust Center | ISO/IEC 27001:2013 Information Security Management Standards).
On the question “Can I use the ISO/IEC 27001 compliance of Microsoft services in my organization’s certification?” the answer is:
Yes. If your business requires ISO/IEC 27001 certification for implementations deployed on Microsoft services, you can use the applicable certification in your compliance assessment. You are responsible, however, for engaging an assessor to evaluate the controls and processes within your own organization and your implementation for ISO/IEC 27001 compliance.

——————————
Informed Consulting The Netherlands
——————————

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.