Our team of experts is dedicated to assisting CPMC program members through the risk, regulatory, and compliance questions that might be a blocker to their cloud adoption.
We may not be able to help with all inquiries, please refer to the program scope page before submitting. If you are unsure, we will do our best to connect you with the right people.
If your customer is not a member of the program, please submit a GetHelp Request.
Before you submit a case
Depending on the type of inquiry, you may find answers using the following resources...
Assurance Topic Questions
Microsoft Compliance is our one-stop-hub for all things Microsoft compliance. Links to our Service Assurance articles, Learning Path, information on the shared responsibility model, risk assessment guidance, Microsoft compliance offerings, and industry specific compliance support. Our internal Q&A tool can provide answers to specific questions as well, pulling from sources including Microsoft Compliance, Service Trust Portal, and curated question & answer pairs.
Risk Assessment Questionnaires
Microsoft Purview Compliance Manager can be used to lookup Microsoft's actions if you know the specific control framework your customer is using. Our internal Q&A tool can also provide answers to questions in bulk if the questionnaire is submitted in a specific format. RFPIO is an internal tool where you can lookup curated and approved answers to customer questions.
External Audit Reports & More
Service Trust Portal hosts Microsoft's audit reports, penetration tests, risk assessment tools, and other downloadable resources. CPMC members have exclusive access to additional resources including the Quarterly Compliance Update, which provides updates on reports and other topics, saving time sifting through multiple reports. FSI checklists are also available to help meet all country specific regulatory requirements.