European Union: European Data Protection Supervisor closed compliance review of order concerning the European Commission's use of Microsoft 365

European Data Protection Supervisor closed compliance review of order concerning the European Commission's use of Microsoft 365

On 11 July 2025, the European Data Protection Supervisor (EDPS) concluded its compliance review of the order concerning the European Commission's use of Microsoft 365. The EDPS identified three contractual, technical, and organisational changes that…

Scope

Policy Area

Public procurement

Policy Instrument

Public procurement access

Regulated Economic Activity

cross-cutting

Implementation Level

supranational

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2024-03-08

in force

On 8 March 2024, the European Data Protection Supervisor (EDPS) issued its ruling regarding the inv…

2024-05-17

under appeal

On 17 May 2024, the European Commission (EC) appealed the ruling of the European Data Protection Su…

2024-12-10

under deliberation

On 10 December 2024, the European Data Protection Supervisor (EDPS) announced it would examine the …

2025-07-11

concluded

On 11 July 2025, the European Data Protection Supervisor (EDPS) concluded its compliance review of …

Description

European Data Protection Supervisor closed compliance review of order concerning the European Commission's use of Microsoft 365

Scope

Complete timeline of this policy change