Microsoft supplier privacy and assurance standards

The Supplier Security and Privacy Assurance (SSPA) Data Protection Requirements (DPR) assessment programme has been designed to improve and strengthen the security, transmission and reporting of data across all Microsoft suppliers processing Microsoft Personal Information or Microsoft Confidential Information. It’s part of an active Master Supplier Services Contract.

As a Microsoft-qualified provider, we can help you navigate the requirements involved.

We provide an SSPA DPR assessment that focuses on a scalable and efficient solution for your company, compiling a report for each applicable control to help you evaluate strengths and potential weaknesses. Our SSPA DPR assessment approach includes:

• an evaluation of SSPA DPR applicability;
• policy and procedure reviews and updates;
• data classification reviews; and
• a letter asserting whether or not your organisation is compliant, to be shared with Microsoft.

We can seamlessly adapt our assessment to your organisation’s exact size, level of security and regulatory demands.

Our depth of industry expertise allows us to make accurate recommendations so that you can work with one advisor and develop a cohesive data security strategy.

Our wide and diverse experience in data governance assessment and advisory projects means that our solutions have an immediate impact on your security and risk position. You’ll get results that benefit your stakeholders from both a technology and management perspective.

To find out exactly how we can help with your SSPA DPR requirements, please contact Sheila Pancholi.