update

Author: TerryLanfear

articles/compliance/index.yml

@@ -29,16 +29,16 @@ conceptualContent:
           text: CIS benchmark
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-csa-star-attestation
           itemType: concept
-          text: CSA-STAR attestation
+          text: CSA STAR attestation
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-csa-star-certification
           itemType: concept
-          text: CSA-STAR certification
+          text: CSA STAR certification
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-csa-star-self-assessment
           itemType: concept
-          text: CSA-STAR self-assessment
+          text: CSA STAR self-assessment
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-soc
           itemType: concept
-          text: SOC
+          text: SOC 1, 2, 3
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-wcag-2-1
           itemType: concept
           text: WCAG
@@ -48,7 +48,7 @@ conceptualContent:
       links:
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-iso-20000-1-2011
           itemType: concept
-          text: ISO 20000-1-2011
+          text: ISO 20000-1
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-iso-22301
           itemType: concept
           text: ISO 22301
@@ -88,14 +88,17 @@ conceptualContent:
           text: DoE 10 CFR Part 810
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-ear
           itemType: concept
-          text: EAR (US Export Administration Regulations)
+          text: EAR
 
     # Card
     - title: US government
       links:
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-fedramp
           itemType: concept
           text: FedRAMP
+        - url: https://docs.microsoft.com/microsoft-365/compliance/offering-ferpa
+          itemType: concept
+          text: FERPA (US)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-fips-140-2
           itemType: concept
           text: FIPS 140-2
@@ -113,7 +116,7 @@ conceptualContent:
           text: NIST CSF
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-section-508-vpats
           itemType: concept
-          text: Section 508 VPATS
+          text: Section 508 VPATs
 
     # Card
     - title: Financial services
@@ -124,18 +127,18 @@ conceptualContent:
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-afm-dnb-netherlands
           itemType: concept
           text: AFM and DNB (Netherlands)
-        - url: https://docs.microsoft.com/microsoft-365/compliance/offering-apra-australia
-          itemType: concept
-          text: APRA (Australia)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-amf-acpr-france
           itemType: concept
           text: AMF and ACPR (France)
+        - url: https://docs.microsoft.com/microsoft-365/compliance/offering-apra-australia
+          itemType: concept
+          text: APRA (Australia)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-eba-eu
           itemType: concept
           text: EBA (EU)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-fca-uk
           itemType: concept
-          text: FCA (UK)
+          text: FCA and PRA (UK)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-ffiec-us
           itemType: concept
           text: FFIEC (US)
@@ -168,9 +171,6 @@ conceptualContent:
           itemType: concept
           text: NBB and FSMA (Belgium)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-nen-7510-netherlands
-          itemType: concept
-          text: NEN 7510 (Netherlands)
-        - url: https://docs.microsoft.com/microsoft-365/compliance/offering-osfi-canada
           itemType: concept
           text: OSFI (Canada)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-pci-dss
@@ -187,7 +187,7 @@ conceptualContent:
           text: SEC Regulation SCI (US)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-shared-assessments
           itemType: concept
-          text: Shared assessments
+          text: Shared Assessments
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-sox
           itemType: concept
           text: SOX (US)
@@ -231,13 +231,7 @@ conceptualContent:
           text: FACT (UK)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-fda-cfr-title-21-part-11
           itemType: concept
-          text: FDA CFR
-        - url: https://docs.microsoft.com/microsoft-365/compliance/offering-ferpa
-          itemType: concept
-          text: FERPA (US)
-        - url: https://docs.microsoft.com/microsoft-365/compliance/offering-gxp
-          itemType: concept
-          text: GxP
+          text: GxP (FDA 21 CFR Part 11)
         - url: https://docs.microsoft.com/en-us/microsoft-365/compliance/offering-mpaa
           itemType: concept
           text: MPAA
@@ -272,7 +266,7 @@ conceptualContent:
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-canadian-privacy-laws
           itemType: concept
           text: Canadian Privacy Laws
-        - url: https://www.trustcenter.cn/default.html
+        - url: https://www.trustcenter.cn/compliance/default.html#DJCP
           itemType: concept
           text: DJCP (China)
 
@@ -297,15 +291,12 @@ conceptualContent:
         - url: https://www.trustcenter.cn/default.html
           itemType: concept
           text: GB 18030 (China) 
-        - url: https://docs.microsoft.com/microsoft-365/compliance/gdpr
+        - url: https://www.trustcenter.cn/compliance/default.html#GB18030
           itemType: concept
           text: GDPR (EU)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-g-cloud-uk
           itemType: concept
           text: G-Cloud (UK)
-        - url: https://www.idw.de/the-idw/about-the-idw
-          itemType: concept
-          text: IDW PS 951 (Germany)
 
     # Card
     - title: Regional
@@ -334,12 +325,13 @@ conceptualContent:
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-pasf-uk
           itemType: concept
           text: PASF (UK)
-        - url: https://www.trustcenter.cn/compliance/default.html#TCS
-          itemType: concept
-          text: TRUCS (China)
         - url: https://docs.microsoft.com/microsoft-365/compliance/offering-pdpa-argentina
           itemType: concept
           text: PDPA (Argentina)
+        - url: https://www.trustcenter.cn/compliance/default.html#TCS
+          itemType: concept
+          text: TRUCS (China)
+
 
 
 additionalContent:
@@ -350,6 +342,25 @@ additionalContent:
     - title: Additional compliance resources
       summary: To access a resource you may need to be signed into your cloud service 
       items:
+
+        - title: Audit reports
+          links:
+            - text: CCSL/IRAP
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?command=Download&downloadType=Document&downloadId=ffcb3aeb-475e-4f23-8a8f-2fc7dac18d68&tab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb&docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_GRC_Assessment_Reports
+            - text: CDSA
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?command=Download&downloadType=Document&downloadId=5a989727-8eaa-410c-888f-91af0bb03811&tab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb&docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_GRC_Assessment_Reports
+            - text: ENS
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?command=Download&downloadType=Document&downloadId=69a6a010-85da-43ff-94cf-19cf921f25fb&tab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb&docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_ENS_Audit_Reports_and_Certificates
+            - text: ISO 27001
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_ISO_Reports
+            - text: FedRAMP
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_FedRAMP_Reports
+            - text: PCI DSS
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_PCI_DSS
+            - text: SOC
+              url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuideV3?docTab=7027ead0-3d6b-11e9-b9e1-290b1eb4cdeb_SOC_/_SSAE_16_Reports
+
+
         - title: Privacy and GDPR
           links:
             - text: Checklists
@@ -367,89 +378,106 @@ additionalContent:
               url: ../governance/blueprints/samples/cis-azure-1.1.0/index.md
             - text: FedRAMP moderate
               url: ../governance/blueprints/samples/fedramp-m/index.md
-            - text: HIPPA HITRUST
+            - text: HIPAA HITRUST
               url: ../governance/blueprints/samples/hipaa-hitrust/index.md
             - text: IRS 1075
               url: ../governance/blueprints/samples/irs-1075/index.md
             - text: ISO 27001
               url: ../governance/blueprints/samples/iso27001/index.md
             - text: NIST SP 800-53
               url: ../governance/blueprints/samples/nist-sp-800-53-rev4/index.md
-            - text: PCI-DSS v3.2.1
+            - text: PCI DSS v3.2.1
               url: ../governance/blueprints/samples/pci-dss-3.2.1/index.md
             - text: UK NHS and UK OFFICIAL (G-Cloud)
               url: ../governance/blueprints/samples/ukofficial/index.md
 
         - title: Implementation and mappings
           links:
-            - text: BIR-2012 Baseline Coverage User Guide for Azure
+            - text: BIR-2012 baseline coverage user guide
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=f49ee594-6c56-4b6f-93c1-646850798354&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_Compliance_Guides
-            - text: CDSA-Compliant Content Protection for Azure
+            - text: CDSA-compliant content protection
               url: https://gallery.technet.microsoft.com/Azure-Implementing-CDSA-8087c7a2
-            - text: CIS Azure Foundations 
+            - text: CIS Azure foundations 
               url: https://azure.microsoft.com/mediahandler/files/resourcefiles/cis-microsoft-azure-foundations-security-benchmark/CIS_Microsoft_Azure_Foundations_Benchmark_v1.0.0.pdf
-            - text: CJIS Cloud Computing Requirements Mapping for Azure 
+            - text: CJIS cloud computing mapping
               url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuide?command=Download&downloadType=Document&downloadId=f33bf55e-1f0e-41e4-a442-7182365833a0&docTab=4ce99610-c9c0-11e7-8c2c-f908a777fa4d_GRC_Assessment_Reports
-            - text: CSA Consensus Assessments Initiative Questionnaire (CAIQ) for Azure
+            - text: CSA CAIQ
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=a966a424-ecfd-4de2-9739-b08aee2d3ca0&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_Compliance_Guides
-            - text: FCA Microsoft’s approach to cloud guidance
+            - text: FCA Microsoft's approach to cloud guidance
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=991d2ba5-da00-48ed-a95e-a16f61db384c&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_Compliance_Guides
-            - text: FERPA implementation guide for Microsoft Azure
+            - text: FERPA implementation guide
               url: https://aka.ms/azureferpa
-            - text: GDPR control mapping for Azure 
+            - text: GDPR control mapping
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocumentsV3?command=Download&downloadType=Document&downloadId=62d400be-b281-48a2-b40a-eb1a89e087cf&tab=7f51cb60-3d6c-11e9-b2af-7bb9f5d2d913&docTab=7f51cb60-3d6c-11e9-b2af-7bb9f5d2d913_AuditedControls
-            - text: GXP Guidelines for Azure
+            - text: GXP guidelines
               url: https://aka.ms/Azure-GxP-Guidelines
-            - text: HIPAA/HITECH Act Implementation Guidance for Azure
+            - text: HIPAA/HITECH Act implementation
               url: https://gallery.technet.microsoft.com/Azure-HIPAAHITECH-Act-1d27efb0
 
         # Card
         - title: Implementation and mappings
           links:
-            - text: HITRUST Customer Responsibility Matrix for Azure
+            - text: HITRUST customer responsibility matrix
               url: https://servicetrust.microsoft.com/ViewPage/Blueprint?command=Download&downloadType=Document&downloadId=3ccde498-4761-4be0-be8b-cd8d379a3a4f&docTab=fc060920-cdb8-11e7-bacf-0bf52b09d912_Healthcare_Blueprint
             - text: ISO 27001 security controls
               url: https://gallery.technet.microsoft.com/13-Effective-Security-72447e11
-            - text: IT Grundschutz Workbook for Azure
+            - text: IT Grundschutz workbook
               url: https://servicetrust.microsoft.com/ViewPage/MSComplianceGuide?command=Download&downloadType=Document&downloadId=2b6fa69b-4cab-4f15-8e7b-560e0291e7f7&docTab=4ce99610-c9c0-11e7-8c2c-f908a777fa4d_GRC_Assessment_Reports
-            - text: MPAA application and cloud security guidelines for Azure 
+            - text: MPAA cloud security guidelines
               url: https://aka.ms/AzureMPAAApplicationandCloudSecurityGuidelines
-            - text: NEN7510-2011 Standard Coverage User Guide for Azure
+            - text: NEN7510-2011 standard coverage guide
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=3285c45c-921c-49ad-b881-be43e0b70490&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_Compliance_Guides
-            - text: NERC CIP Standards for Azure
-              url: https://aka.ms/NERC-Guide
-            - text: NZ GCIO Cloud Computing Information Security & Privacy Considerations
+            - text: NERC CIP standards
+              url: https://aka.ms/AzureNERC
+            - text: NZ GCIO cloud computing considerations
               url: https://gallery.technet.microsoft.com/Response-to-GCIO-Cloud-e117bbb9
-            - text: PCI DSS 3.2.1 Responsibility Matrix for Azure
+            - text: PCI DSS 3.2.1 responsibility matrix
               url: https://gallery.technet.microsoft.com/Azure-PCI-DSS-Responsibilit-02d4b4b2
-            - text: SOX guidance for Azure
+            - text: SOX guidance
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=447ddef4-e55d-41f8-b233-328934efb461&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_Compliance%20Guides
-            - text: UK OFFICIAL cloud security controls for Azure
+            - text: UK OFFICIAL cloud security controls
               url: https://aka.ms/complianceuk
 
         # Card
         - title: White papers and analyst reports
           links:
-            - text: Azue Security, Privacy and Compliance (Response to NZ GCIO Cloud Computing Information Security & Privacy ConsiderationsIn 2014 the NZ)
+            - text: Azue security, privacy and compliance
               url: https://gallery.technet.microsoft.com/Response-to-GCIO-Cloud-e117bbb9
-            - text: Data Residency and Security with Azure
-              url: https://azure.microsoft.com/resources/achieving-compliant-data-residency-and-security-with-azure/
-            - text: Azure RFI on Security and Compliance
+            - text: Data residency and security
+              url: https://gallery.technet.microsoft.com/Azure-for-Secure-Worlwide-19b91d44
+            - text: Azure RFI on security and compliance
               url: https://gallery.technet.microsoft.com/Azure-Standard-Response-to-5de19cb6
-            - text: Azure meets Compliance Standards
-              url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=c24c11f2-2cd4-444a-9160-19762855ad3a&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_FAQ_and_White_Papers
-            - text: Azure Internet of Things Compliance
+            - text: Azure Internet of Things compliance
               url: https://gallery.technet.microsoft.com/Azure-and-Data-Compliance-bda1f632
-            - text: IDC - Azure Manages Regulatory Challenges 
+            - text: IDC - Azure manages regulatory challenges 
               url: https://azure.microsoft.com/resources/azure-is-helping-organizations-manage-regulatory-challenges/
             - text: Overview of Azure compliance
               url: https://gallery.technet.microsoft.com/Overview-of-Azure-c1be3942
-            - text: Azure Risk Compliance Guide
+            - text: Azure risk compliance guide
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=edee9b14-3661-4a16-ba83-c35caf672bd7&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_FAQ_and_White_Papers
-            - text: Shared Responsibilities for Cloud Computing
+            - text: Shared responsibilities for cloud computing
               url: https://gallery.technet.microsoft.com/Shared-Responsibilities-81d0ff91
             - text: Government cloud assurance guide
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=c24c11f2-2cd4-444a-9160-19762855ad3a&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_FAQ_and_White_Papers
-            - text: Azure Export Controls White Paper
+            - text: Azure export controls
               url: https://servicetrust.microsoft.com/ViewPage/TrustDocuments?command=Download&downloadType=Document&downloadId=c24c11f2-2cd4-444a-9160-19762855ad3a&docTab=6d000410-c9e9-11e7-9a91-892aae8839ad_FAQ_and_White_Papers
 
+        # Card
+        - title: Country privacy and compliance guides
+          links:
+            - text: Australian security and privacy requirements
+              url: https://gallery.technet.microsoft.com/Azure-Compliance-in-the-0c790495
+            - text: Singapore security and privacy requirements
+              url: https://aka.ms/azurecompliancesingapore
+            - text: Malaysian security and privacy requirements
+              url: https://aka.ms/azurecompliancemalaysia
+            - text: New Zealand Security and Privacy Requirements
+              url: https://aka.ms/azurecompliancenewzealand
+            - text: Navigating your way to the cloud in Europe 
+              url: https://www.microsoft.com/en-ie/lcc_cloud/default.aspx
+            - text: Navigating your way to the cloud in Asia
+              url: https://www.microsoft.com/en-sg/apac/trustedcloud/default.aspx
+            - text: Navigating your way to the cloud in Middle East and Africa
+              url: https://msmea-staging.azurewebsites.net/mea/trustedcloud/default.aspx
+            - text: Cloud compliance guides for financial services (over 30 countries)
+              url: https://servicetrust.microsoft.com/ViewPage/TrustDocumentsV3