Office 365 and PCI

My company is looking into adopting 'OneDrive for Business' and 'Sharepoint online' as cloud storage solutions and while I can find info on other standards like HIPAA on Microsoft's website, information on PCI is conflicting.

My question to you: can documents that fall under the PCI compliance umbrella be stored in ODfB and Sharepoint?


Thank you for your help!
Alan DalaITAsked:
Who is Participating?
 
Vasil Michev (MVP)Commented:
PCI doesnt really apply to O365, as it's sort of a "niche". You certainly have all the needed controls to securely store documents containing payment information, encrypt them in transit and so on.

You can find some documents such as the "PCI responsibility matrix" in the O365 Trust Center: https://protection.office.com/#/serviceassurance/othertrust
A lot more information is available on the Azure compliance with PCI: https://protection.office.com/#/serviceassurance/compliance
0
 
Vasil Michev (MVP)Commented:
If you feel this question wasn't answered or should be closed differently, post an objection. The moderators will review all objections and close it as they feel fit.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.