All Microsoft vendors who collect, store or process customer, partner or employee personal information are required to comply with Supplier Security and Privacy Assurance Program(SSPA). This is a Microsoft initiative designed to standardize the handling of Microsoft customer, partner and employee personal information.
Cynthia Forbes and her team have been involved in this process with a vendor handling High Business Impact personal information. As qualified auditors, the team at Forbes are able to attest to the Microsoft vendors compliance with the Supplier Security and Privacy Assurance Program.
If you require further assistance with a such an audit or have an industry-specific requirement please contact firstname.lastname@example.org and we can tailor a program to suit your needs.