The DPC has prepared guidance to assist organisations understand their obligations with regard to the security of personal data, and to mitigate their risks when utilising a cloud-based environment.
EU Commission’s Microsoft 365 Usage Breaches GDPR
EU Commission violates GDPR with Microsoft 365 usage, faces corrective measures by EDPS.