T-Systems encrypts all content data and content meta data saved in Microsoft 365 and pseudonymizes the user’s information on its way to the cloud. This allows Microsoft public cloud users to take advantage of the benefits offered by a cloud infrastructure while at the same time fulfilling the highest requirements stated in the General Data Protection Regulation (GDPR), including for personal data. Once it’s been set up, the Cloud Privacy Service will run unnoticed in the background. Thanks to encrypted storage, it is not possible for unauthorized third-parties to gain access to the data.
The Cloud Privacy Service encrypts and decrypts all data between the user and Microsoft’s servers. Only encrypted data is saved there. Despite this, Microsoft 365 can still function fully – this includes the full-text search and collaboration on documents. The user doesn’t notice the encryption at all. All they need is internet access. The solution employs highly-secure cryptographic keys with a key length of 256-bit (AES 256) in accordance with the Advanced Encryption Standard. T-Systems operates the Cloud Privacy Service from its own data center in Germany. The solution was developed in cooperation with Germany-based eperi GmbH, who specialize in data security, and builds on their gateway technology.