we've discussed the shared security responsibility for the cloud in the past.
Compliance isn't different.
In addition to governing your own resources, you also need to understand what standards and policies Microsoft uses to manage the underlying infrastructure.
Microsoft is very transparent about how they manage their infrastructure.
The entry point for you to learn about Microsoft certifications and policies is Microsoft Trust Center.
Let's see what that is.
Microsoft Trust Center is a website where you can find information about how Microsoft implements security, how they deal with privacy and how they comply with government regulations around the world.
Microsoft Trust Center applies for all Microsoft products, including Azure Office 3 65 Dynamics 3 65 and Microsoft, 3 65.
Some things that you can find here are solutions and recommendations for implementing secure workloads on Azure,
Microsoft's privacy statement and documentation helping you to understand how Microsoft handles yours and your customers' private data and a comprehensive list of compliance offerings for azure, including regional compliance.
Another important piece of documentation that provides additional transparency is how Microsoft operates
Service Trust Portal is Microsoft's public website for publishing all its reports and other compliance related information related to Microsoft Cloud Services.
You can use the service Trust portal to download all the reports from external auditors, penetration testing and security assessment reports, as well as internal Microsoft reports
in the service Trust portal, you can find information required for your own compliance with the standards and regulations like GDP, our HIPAA, NIST, I S O and many more.
The service trust portal hosts the Microsoft Compliant Manager, which is a workflow based risk assessment dashboard that allows you to track your organization's compliance.
It offers features like a self assessment of the organizational compliance with different standards.
It enables you to assign and track your progress on different controls, provides a resource repository, allows you to upload and manage artifacts related to compliance activities,
produces reach reports that can be submitted to auditors and compliance stakeholders, and it also provides recommended actions.
Now you know how you can find information that can help you with your regulatory compliance. In Azure