Hessen’s data protection authority has approved Microsoft 365 for public institutions after reaching legal solutions on data protection issues. The decision followed lengthy talks with Microsoft, but no technical audit. Now, most user data is processed in Europe, reducing concerns over US data transfers. The authority released guides and templates for GDPR compliance. Meanwhile, some German sectors and international organizations are shifting toward open-source alternatives for increased sovereignty. This approval provides legal certainty for German public sector organizations modernizing their digital systems.
https://themunicheye.com/hessen-approves-microsoft-365-public-sector-data-protection-29225