Microsoft SSPA Attestation Services

More information


About Microsoft SSPA Attestation Services

The Microsoft SSPA program ensures baseline privacy and security principles are followed when Microsoft suppliers handle Microsoft customer, partner and employee personal information and Microsoft sensitive information. All Microsoft suppliers who work with Microsoft personal or sensitive information are required to demonstrate compliance with Microsoft’s Data Protection Requirements (DPR) on an annual basis.

Features of the ControlCase Microsoft SSPA Attestation Services include:

  • Automated evidence gathering for audits and overall process controls.
  • Efficiency for managing remediation activities by task/ resource.
  • Dashboards and flexible reporting.
  • Management of documents and policies that can be applied to almost any process flow.