Security & Compliance
Strict Security and Compliance Model for Microsoft Sentinel
We recognize that security monitoring must meet compliance and governance requirements. Our Sentinel implementation follows a strict security model to ensure data integrity and sovereignty.
Data Processing
-
All log data remains within your Azure subscription and region.
-
We do not move or copy customer data outside your environment (with the exception of alerts/incidents).
-
Retention periods are set to 90 days.
Access Management
-
Sentinel is deployed according to the principle of least privilege.
-
No permanent Global Admin accounts are required.
-
Service principals from a dedicated Entra ID tenant are granted access to the Sentinel workspace.