Microsoft Azure Compliance in the context of Singapore Security and Privacy Requirements whitepaper addresses questions faced by customers in Singapore who are considering a move to the cloud.
Azure meets the Multi-Tier Cloud Security (MTCS) Singapore Standard certification at Level 3 and complies with the Singapore Personal Data Privacy Act (PDPA). This means both government and commercial customers can have confidence knowing they comply with Singapore legislative and certification requirements when deploying data to the cloud. With the global nature of the cloud, customers want to know their security and privacy is assured. Where customers have concerns over data sovereignty, Azure provides complete control over where their data lives by allowing them to choose from 24 Azure regions in Asia, the Americas, and Europe. In addition, Microsoft does not provide any third party with direct or unfettered access to customer data, and always attempts to redirect government requests for data to the customer. Finally, tenant isolation and strict access controls help ensure only customers can access their data by default.