Your data, isolated by design.
How we keep your Microsoft 365 data safe — and what you can ask us about it.
Tenant isolation
Every customer gets their own Microsoft Fabric workspace and Lakehouse. There are no shared rows between customers — your data lives in a dedicated workspace tied to your Microsoft 365 tenant.
EU data residency
Product processing and storage are hosted in EU Microsoft cloud regions through Microsoft Azure and Microsoft Fabric. Customer workspaces are configured for EU residency.
Encryption
Data in transit is protected with TLS 1.2 or higher. Data at rest is encrypted with AES-256 using Azure-managed keys.
Access scopes
We use admin consent on your tenant to read data via Microsoft Graph. Permissions are read-only and follow least-privilege principles. We never write to your tenant or change configuration on your behalf.
Third-party services
Product data is processed in Microsoft Azure and Microsoft Fabric. Demo booking is handled separately through Cal.com and does not receive Microsoft 365 report data.
Data Processing Agreement
A DPA is available on request. Email info@nowcloud.nl and we will send the latest version.
Incident response
In the event of a confirmed incident affecting customer data, we notify affected customers within 72 hours along with a summary of impact and remediation. Detailed runbooks are documented internally and reviewed periodically.
Questions?
For anything not covered here — security questionnaires, audit support, sub-processor changes — reach out at info@nowcloud.nl.