Friday 4 October 2013

Microsoft enterprise cloud customers protected by a wall of lawyers

Microsoft logo at its Redmond headquarters
Microsoft's user data requests transparency report contained a brief line about the customers using the firm's enterprise services.
It stated that 19 requests had arrived in the first six months of 2013, all of which came from US agencies relating solely to customers within the US. Microsoft also added that so far it had received no requests regarding enterprise customers in connection with national security orders, which are more serious requests that can't be reported in detail.
It said that the 19 requests related to 48 accounts, which resulted in customer content (emails, documents, chat messages) being disclosed on four occasions, with one other request responded to with non-content data, which includes usernames and IP addresses. Of those five requests, four of the customers were notified while one other was not. Thirteen other requests were rejected or had no relevant data, with one further case still pending.
Microsoft defines enterprise customers as organisations subscribing multiple users to services such as Office 365, Azure, Exchange Online and CRM Online.
Microsoft highlighted that this is particularly pertinent as, while it obviously affects such a tiny minority of users, it still means that enterprise customers using cloud services have no choice as to whether they choose to release their data or not. If it's stored on Microsoft's servers, it's Microsoft's responsibility to disclose data whether they like it or not.
The crumb of comfort for Microsoft's enterprise customers is that Redmond clearly has a crack legal team that will reject any request it sees as legally unjustified. With that being said, there's still a lot of faith the public has to put into a group of unknown legal experts.
It will be interesting to see how Microsoft's data compares with other enterprise cloud service providers if they choose to release their own data, which they are of course not obliged to do.

No comments:

Post a Comment