Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Get Fabric certified for FREE! Don't miss your chance! Learn more

Reply
Mmoustaqssa
Regular Visitor

Governance

‎01-28-2026 07:39 AM

Hello,

I am working with a client in the banking sector who uses Power BI Service. In the country where I operate, there are strong regulatory constraints around data residency and data processing in the cloud, and outsourcing or processing sensitive data outside the country is highly restricted.

The client is concerned about where data is stored, processed, and accessed when using Power BI Service, and would like to ensure compliance with banking regulations, data sovereignty, and security requirements.

I would like to know if Microsoft provides official documentation (compliance guides, or regulatory references) that clearly explain:

  • Data residency and regional data storage for Power BI Service

  • How customer data is protected and isolated

  • Compliance with financial services and banking regulations

  • Security, encryption, and access controls in Power BI Service

The goal is to provide official Microsoft documentation to reassure the client and support internal compliance and audit discussions.

Thank you in advance for your guidance.

Labels:
Message 1 of 6
511 Views
0
1 ACCEPTED SOLUTION
v-karpurapud
Community Support
Community Support
In response to Mmoustaqssa

‎02-08-2026 10:39 PM

Hi @Mmoustaqssa 


Microsoft offers formal, audit-ready compliance documents for Power BI, specifically designed for banking and highly regulated financial-services organizations. These are available through the Microsoft Trust Center and the Microsoft Service Trust Portal, where authorized customers can access independently audited reports such as SOC 1 Type II, SOC 2 Type II, SOC 3, ISO/IEC 27001, ISO/IEC 27018, ISO/IEC 27701, PCI DSS (where applicable), and GDPR compliance documentation. All these documents include Power BI as a covered service.

 

Additionally, Microsoft provides detailed security resources, including the Power BI Security White Paper Power BI security white paper - Power BI | Microsoft Learn and the Power BI Data Protection and Security OverviewData protection in Power BI - Microsoft Fabric | Microsoft Learn, which cover topics like data residency, tenant isolation, encryption, access controls, and operational security. These materials are commonly used by banks for internal risk assessments and regulatory audits, demonstrating that Power BI benefits from Azure’s regulated cloud compliance, including region-locked data residency, strong logical isolation, and enterprise-grade security controls validated by independent third-party audits.

 

If you have any more questions, please let us know and we’ll be happy to help.

 

Regards,

Microsoft Fabric Community Support Team.
 

View solution in original post

Message 6 of 6
218 Views
0
5 REPLIES 5
Mmoustaqssa
Regular Visitor

‎02-05-2026 07:39 AM

For banking customers, which specific compliance artifacts should be provided during audits to demonstrate Power BI compliance 

Message 5 of 6
289 Views
0
v-karpurapud
Community Support
Community Support
In response to Mmoustaqssa

‎02-08-2026 10:39 PM

Hi @Mmoustaqssa 


Microsoft offers formal, audit-ready compliance documents for Power BI, specifically designed for banking and highly regulated financial-services organizations. These are available through the Microsoft Trust Center and the Microsoft Service Trust Portal, where authorized customers can access independently audited reports such as SOC 1 Type II, SOC 2 Type II, SOC 3, ISO/IEC 27001, ISO/IEC 27018, ISO/IEC 27701, PCI DSS (where applicable), and GDPR compliance documentation. All these documents include Power BI as a covered service.

 

Additionally, Microsoft provides detailed security resources, including the Power BI Security White Paper Power BI security white paper - Power BI | Microsoft Learn and the Power BI Data Protection and Security OverviewData protection in Power BI - Microsoft Fabric | Microsoft Learn, which cover topics like data residency, tenant isolation, encryption, access controls, and operational security. These materials are commonly used by banks for internal risk assessments and regulatory audits, demonstrating that Power BI benefits from Azure’s regulated cloud compliance, including region-locked data residency, strong logical isolation, and enterprise-grade security controls validated by independent third-party audits.

 

If you have any more questions, please let us know and we’ll be happy to help.

 

Regards,

Microsoft Fabric Community Support Team.
 

Message 6 of 6
219 Views
0
v-karpurapud
Community Support
Community Support

‎02-01-2026 10:36 PM

Hi @Mmoustaqssa 

Thank you for reaching out to the Microsoft Fabric Community Forum. 

Please take a moment to review the details shared by @Vinodh247 , @GilbertQ and confirm whether they align with your expectations. Let us know if you require any additional assistance or clarification.

Regards,

Microsoft Fabric Community Support Team.

Message 4 of 6
362 Views
0
GilbertQ
Super User
Super User

‎01-28-2026 02:01 PM

Hi @Mmoustaqssa 

 

Here is the link below where you can find all the information from the Microsoft Trust Center exactly explaining how data is used and where it lives. Microsoft Trust Center Overview | Microsoft Trust Center





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

Message 3 of 6
465 Views
Vinodh247
Super User
Super User

‎01-28-2026 08:05 AM

 

Microsoft clearly documents that PBI data is stored in the customer’s selected tenant region and does not move outside that geography unless explicitly configured. Datasets, reports, dashboards, and metadata remain within the assigned Azure datacenter region.

 

How customer data is protected and isolated?
PBI uses a multi-tenant architecture with strong logical isolation between tenants. Customer data is isolated at the storage, compute, and identity layers, backed by Azure Active Directory tenant boundaries. Microsoft states that customer data is not accessible to other tenants or Microsoft personnel without controlled, audited access. 

https://learn.microsoft.com/en-us/power-bi/guidance/white-paper-powerbi-security

https://learn.microsoft.com/en-us/fabric/enterprise/powerbi/service-security-data-protection-overvie...

 

Compliance with financial services and banking regulations
Microsoft publishes a formal compliance mapping for PBI covering ISO 27001, ISO 27018, SOC 1/2/3, PCI DSS, GDPR, and country specific financial regulations where applicable. Banking clients typically rely on SOC reports and ISO certifications during audits. 

 

Security, encryption, and access controls
PBI encrypts data at rest and in transit using Microsoft managed keys by default, with support for customer-managed keys (BYOK) in Premium capacities. Access is controlled via Azure Active Directory, role-based access control, row-level security, conditional access, and audit logs. 

 

How to position this to the bank?
PBI is built on Azure’s regulated cloud foundation. Data residency is region locked, security controls are enterprise-grade, and compliance evidence is independently audited and published by Microsoft. From a regulator’s perspective, PBI inherits Azure’s banking grade compliance posture rather than being a standalone SaaS risk.

 

 

Please 'Kudos' and 'Accept as Solution' if this answered your query.

Regards,
Vinodh
Microsoft MVP [Fabric]
LI: https://www.linkedin.com/in/vinodh-kumar-173582132
Blog: vinsdata.in
Message 2 of 6
487 Views
0

Helpful resources

Announcements
Sticker Challenge 2026 Carousel

Join our Community Sticker Challenge 2026

If you love stickers, then you will definitely want to check out our Community Sticker Challenge!

January Power BI Update Carousel

Power BI Monthly Update - January 2026

Check out the January 2026 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All