Your plan to design a bot that will be hosted by using Azure Bot Service.
Your company identifies the following compliance requirements for the bot:
– Payment Card Industry Data Security Standards (PCI DSS)
– General Data Protection Regulation (GDPR)
– ISO 27001
You need to identify which compliance requirements are met by hosting the bot in the bot service.
What should you identify?
A . PCI DSS only
B . PCI DSS, ISO 27001, and GDPR
C . ISO 27001 only
D . GDPR only
Answer: B
Explanation:
Azure Bot service is compliant with ISO 27001:2013, ISO 27019:2014, SOC 1 and 2, Payment Card Industry Data Security Standard (PCI DSS), and Health Insurance Portability and Accountability Act Business Associate Agreement (HIPAA BAA).
Microsoft products and services, including Azure Bot Service, are available today to help you meet the GDPR requirements.
References:
https://docs.microsoft.com/en-us/azure/bot-service/bot-service-compliance
https://blog.botframework.com/2018/04/23/general-data-protection-regulation-gdpr/
Leave a Reply