Office 365 and GDPR
Those of you who have Office 365 and access to the security center maybe already mentioned that there is GDPR section with dashboard since 25th May. I think that this is the nice place to start your GDPR journey and find potential risks & policies across your Office 365 tenant.
If you will click on the “go to the GDPR dashboard” you will be transferred to the dashboard (surprise ) where you can see GDPR toolbox, some help, DSR cases – rights for people for their personal data as a copy in electronic format and in the end few charts with open/closed cases, amount of label trends, number of pending dispositions in SharePoint / OneDrive and report of Malware and DLP policy matches.
Generally nice overview with which you can start with.
From my point of view the best tool here is the toolbox, which can help you to go through the whole life cycle, from importing the data, finding personal data in those imports, applying the labels, protecting them with the policies and monitoring them.
I think that based on number of articles about GDPR it is almost useless to write another huge article how to go through the settings and which settings can help with what. However, if you would like to have more described approach of such a setting, let me know in to the comments and I would like to provide you more examples.
Also perfect is to realize where your data are stored – in which geolocation. You can find this information in the organization profile in your admin center of Office 365
Generally, I think that there are many strong words about the GDPR. In the final there is not so much actions needed as many parts of GDPR are already in place for a few years, something is new of course.