Free Public Education Template
Public educational institutions that use Microsoft 365 are generally responsible for implementing data protection requirements themselves. According to Article 35 of the General Data Protection Regulation (GDPR), they are obliged to check whether a data protection impact assessment (DPIA) is required and, if so, to perform it. With the help of our free template for a data protection impact assessment (DPIA) for the use of Microsoft 365 by public educational institutions , we support data controllers in assessing and documenting data protection risks and suitable remedial measures. As a result, the use of Microsoft 365 by a public educational institution may be permissible under data protection law if a suitable selection of risk-reducing technical and organisational measures is implemented.
For more information on data-protection-compliant use of Microsoft 365, see our one-pager on Microsoft 365 data protection compliance and our five tips for data-protection-compliant use of Microsoft 365 by public sector entities. Feel free to get in touch with us at any time if you need our support in using Microsoft 365 in a data-protection-compliant manner or if you have any questions. We would be happy to explain our procedure to you in detail in a personal meeting.back