Dynamics 365 BC - Architecture and Compliance

Dynamics 365 Business Central

Business Central SaaS uses a layered approach to application security.
Microsoft Entra ID (Azure Active Directory) is used for authentication with the option to apply additional control layers with Azure Conditional Access policies.
Data belonging to a single tenant is stored in an isolated database to ensure data isolation from other tenants.
Encryption methods like Transparent Data Encryption (TDE) and backup encryption are used to protect tenant data at rest.
Data backups in Business Central are always encrypted.
All network traffic within the service is encrypted using industry-standard protocols.
Business Central as a SaaS changes responsibilities compared to traditional on-prem deployments, following a shared responsibility model.
Compliance and regulatory factors are essential considerations for Business Central SaaS architecture and operations.

Registered users can view the full text for FREE!