Microsoft today announced three new features in Office 365 that significantly enhance customers’ transparency and control of their data.
Security and compliance signals
We currently provide customers with a range of logs on their user interactions with content in Office 365. This provides customers with visibility that is important for meeting business policies, as well as regulations. Today we are announcing the expansion of these logs to include the majority of user, admin and policy related actions across Exchange Online and SharePoint Online in Office 365. We are also introducing a new Office 365 Management Activity API through which customers and partners can use the logs as Security and Compliance signals within solutions that provide monitoring, analysis and data visualization.
This new capability, Customer Lockbox for Office 365, provides unprecedented customer control over content residing in Office 365, so customers can be assured that their content will not be accessed by Microsoft employees without their explicit approval. It brings customers into the access approval loop, requiring the customer to provide explicit approval of access to their content by a Microsoft employee for service operations. The Customer Lockbox feature will be enabled in Office 365 for Exchange Online by the end of this year, and for SharePoint Online in the first quarter of 2016.
Microsoft will add content level encryption for email in Office 365. Implementing this feature will increase the separation of server administration from the data stored in Office 365, resulting in an added layer of security. This new layer of content level encryption uses keys that are protected using hardware security modules certified to FIPS 140-2 Level 2. This new advanced encryption for email will be provided in Office 365 by the end of 2015.
Read more about it here.