Following its investigation, the EDPS has found that the European Commission (Commission) has infringed several key data protection rules when using Microsoft 365. In its decision, the EDPS imposes corrective measures on the Commission.
↫ European Data Protection Supervisor
You often hear people state that EU rules and regulations are designed exclusively to harm non-EU companies. The massive amounts of fines and corrective actions handed out to EU companies in all kinds of sectors already disprove this notion, and here’s a case where even the European Commission itself gets a slap on the wrist for violating its own rules and regulations – rules and regulations, we’re often told by especially American corporatists, are designed specifically to target poor American businesses.
Not that corporatists have any use for reality and facts, but still.
I am not sure that a slap on the wrist for a problem with using a *microsoft* product is a particularly convincing point in favor of your argument.
Mote,
Yes. Especially more so when Microsoft (like other similar companies) already have EU compliant data transfer and retention policies in place.
https://learn.microsoft.com/en-us/privacy/eudb/eu-data-boundary-learn
At best, they could fix this by changing some settings in their own setup. Worst case, it would be a phone call / official request to Microsoft for updates.
Again, the EU data, already stays in the EU.