SSPA Assessment - Microsoft DPR Assessments

The Supplier Security and Privacy Assurance (SSPA) previously known as the Vendor Privacy Assurance Program is an assessment for Microsoft suppliers/vendors who process their data on their behalf. This assessment is required by the Microsoft to ensure that their vendors follow Microsoft’s security and privacy policy which reflect their values.

Does it apply to your organization

SSPA attestation is applicable for all the companies who are the suppliers of Microsoft. One should get this assessment done if they are planning to get associated with Microsoft in future.

How can Riskpro help and what are the services offered by Riskpro

Riskpro is a member of American Institute of Certified Public Accountants (AICPA) and highly qualified assessors who can do the assessments for your company. SSPA services provided by Riskpro are as follows:

SSPA Consulting

Riskpro will help you to understand the requirements of SSPA and help you to implement the controls in your company. It will ensure that all the controls are implemented as per the requirements of SSPA.

Gap assessment

Riskpro does gap assessments wherein a qualified assessor will visit your company and do a mock assessment of all the controls implemented in your company. This assessment will be in line with SSPA requirements and at the end of which the assessor will provide you with a list of gaps identified. You may fix all the gaps identified and prepare for the actual assessment. This will help you to assess the readiness of your company for the actual assessment.

SSPA assessment

A qualified assessor will visit your company and conduct a formal assessment on the controls implemented by you. This assessment will be conducted as per the requirements of the SSPA assessment expected by Microsoft. At the end of the assessment the assessor will provide you with a assessment report which will include all the controls audited and the assessor conclusions on the same. This report can be used an official document to certify that your company has completed the assessment successfully.

More Info:

Other Services of Interest

  • Self Assessment Software Login - India Data Protection Regulation

    Riskpro India has developed a Self Assessment tool to evaluate and manage the compliance gaps against the almost here regulation on Data Protection. The Free Login access provides you the ability...
  • Vendor Risk Software - Third Party Risk Management (TPRM)

    TPRM Overview Third party risk management (TPRM) is a structured approach to analyze and control risks arising to the organization from third parties. Mainly third parties are: Vendors Customers...
  • Third Party Risk Management (TPRM) - Webinar

    EVENT OVERVIEW: TPRM or Third Party Risk Management is not a new concept, but something that needs to be addressed today. With Cybersecurity, Privacy issues emerging every day, often we find that...
  • 21 CFR Part 11 Consulting Services

    Implementing a CFR 21 part 11 software /system helps you to achieve compliance with FDA regulation and also provide you inroads to more clients who can trust your system. Riskpro's 21 CFR Part 11...
  • Celebrating 1 Year of GDPR - Webinars from Riskpro

    GDPR turns ONE on 25 May 2019. On this Anniversary, lets explore what the last 12 months meant for global companies as it relates to Data Protection and Privacy. Riskpro India has organised 6 GDPR...
  • Procurement Fraud - Riskpro can help

    If you suspect procurement fraud, do contact Riskpro India and we can help to unearth the suspicious activity. Following are some of the ways in which we can help. 1. Review of onboarding...
  • India: Data Protection Services

    The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years. Now India has its own version of Data protection regulation that will change...
  • Fire Safety Assessments and Training

    Some of our features of Fire Safety Assessments and Training • Fire Science • The common causes of fire • Identify fire hazards • Types of fires and extinguishers • Fire...
  • Data Protection Officer (DPO) Services

    Why a DPO The General Data Protection Regulation (GDPR) makes it compulsory for certain companies to appoint a DPO. this is a mandatory position that is expected to carry out certain defined tasks....
  • Go to top