What actually changed on January 7, 2026?

Microsoft activated Anthropic as a default-on subprocessor for Microsoft 365 Copilot for most commercial-cloud customers outside the European Union, EFTA, and the United Kingdom. The new admin toggle "AI providers operating as Microsoft subprocessors" first appeared in the Microsoft 365 admin center on December 8, 2025; the underlying subprocessor relationship became effective on January 7, 2026. The legacy Anthropic opt-in toggle (which used Anthropic's separate commercial terms and DPA) was deprecated on the same date and replaced by the new subprocessor toggle under Microsoft's enterprise framework.

Is this in scope for my organisation?

You are affected if you are a commercial-cloud Microsoft 365 customer outside the EU, EFTA, and the UK. For those customers the toggle is default ON and Anthropic models are enabled across Microsoft 365 Copilot, Researcher, Copilot Studio, Power Platform, Agent Mode in Excel, and Word/Excel/PowerPoint agents. Customers in the EU, EFTA, and UK have the toggle default OFF; on April 3 2026 Microsoft introduced a separate admin setting that allows EU/EFTA/UK admins to enable Anthropic as the default model for Copilot in M365 apps if they opt in. Government clouds (GCC, GCC High, DoD) and other sovereign clouds are not in scope at all; no toggle is exposed there.

Why does this matter for the EU Data Boundary?

Microsoft's own documentation states verbatim that "Anthropic models deployed in Microsoft offerings ... are currently excluded from the EU Data Boundary, and when applicable, in-country processing commitments." If you depend on the EU Data Boundary as part of how you assure your own customers about where their data is processed, enabling Anthropic models inside your Microsoft 365 tenant breaks that assurance. EU/EFTA/UK customers stay default-OFF precisely for this reason.

What does GDPR Article 28(2) require me to do?

If you are a processor of personal data and Microsoft 365 is part of how you process it, Anthropic is now a new sub-processor in your data chain. GDPR Article 28(2) requires you to inform your controllers (your customers) of any intended addition or replacement of a sub-processor and give them the opportunity to object. Most commercial SaaS DPAs operate under "general written authorisation" which means a list-plus-prior-notice mechanism; the practical implication is that you need to update your public subprocessor disclosure and notify your customers in line with whatever notice window your DPA specifies (commonly 10-30 days).

How do I opt out as a Microsoft 365 admin?

Go to the Microsoft 365 admin center, then Copilot -> Settings -> AI providers operating as Microsoft subprocessors. There you can either disable Anthropic as a Microsoft subprocessor entirely or restrict access to specific users or Microsoft Entra ID security groups. You must be a global administrator to make this change. Disabling Anthropic will limit features that rely on Claude models in Copilot Studio, Researcher, and the Excel/Word/PowerPoint agents.

What about future changes to my subprocessor chain?

This is the recurring problem. The Microsoft + Anthropic event is one example; AWS, Google Cloud, OpenAI, Cloudflare, Stripe and every other major SaaS provider you depend on updates its own subprocessor list periodically and you are downstream of every one of those updates. Registora monitors the published subprocessor pages of 18 of these providers daily and drafts the GDPR Article 28(2) customer notification for you the moment any of them change. The free tier hosts up to five subprocessors on your own subdomain.

Alert · Microsoft 365 · Subprocessor change

Updated 28 May 2026

Microsoft made Anthropic a default-on M365 subprocessor.

On 7 January 2026 Microsoft activated Anthropic as a default-on subprocessor for Microsoft 365 Copilot for commercial-cloud customers outside the EU, EFTA, and the UK. Microsoft's own documentation says Anthropic is excluded from the EU Data Boundary. If you process personal data through Microsoft 365 in any capacity, you have a GDPR Article 28(2) notification obligation that did not exist 30 days ago. Here is what changed, who is affected, and a customer-notification template you can send today.

8 Dec 2025

Admin toggle appears in M365 admin center

7 Jan 2026

Anthropic becomes a Microsoft subprocessor; legacy opt-in toggle deprecated

3 Apr 2026

Separate EU/EFTA/UK opt-in setting for Anthropic as the default Copilot model

End Mar 2026

Microsoft's target for full availability across tenants

Key facts

01Anthropic became a Microsoft subprocessor for Microsoft 365 Copilot on 7 January 2026, replacing the previous opt-in arrangement under Anthropic's own commercial terms.
02For commercial-cloud customers outside the EU, EFTA, and the UK, the new admin toggle is ON by default. EU/EFTA/UK customers stay OFF by default.
03Microsoft's documentation states Anthropic is excluded from the EU Data Boundary and from in-country processing commitments where applicable.
04Affected products include Microsoft 365 Copilot, Researcher, Copilot Studio, Power Platform, Agent Mode in Excel, and the Word, Excel, and PowerPoint agents.
05Government clouds (GCC, GCC High, DoD) and other sovereign clouds are excluded; no toggle is exposed there.
06Under GDPR Article 28(2) the addition of a new sub-processor obliges processors to inform their controllers and give them the opportunity to object.

§ I

What changed, exactly

On 8 December 2025 a new admin setting appeared in the Microsoft 365 admin center titled “AI providers operating as Microsoft subprocessors”. Anthropic was the first vendor exposed under it. On 7 January 2026 the legacy admin toggle for opting in to Anthropic under Anthropic's separate commercial terms and data processing agreement was deprecated, and Anthropic was onboarded as a Microsoft subprocessor under Microsoft's enterprise framework instead.

For most commercial-cloud customers the new toggle is set to ON by default. The practical effect is that users in those tenants can pick Claude models inside Microsoft 365 Copilot, Researcher, Copilot Studio, Power Platform, Agent Mode in Excel, and the Word, Excel, and PowerPoint agents. UI indicators inside Copilot show when a Claude model is being used; in Copilot Studio the model has to be chosen at agent creation.

Microsoft expected full availability across all in-scope tenants by the end of March 2026. On 3 April 2026 a separate admin center setting was introduced that allows EU/EFTA/UK admins to enable Anthropic as the default Copilot model for M365 apps if they opt in - a second knob, distinct from the underlying subprocessor toggle.

§ II

Who is affected, in plain terms

-Commercial-cloud customers outside EU/EFTA/UK: Anthropic ON by default. Your tenant is processing user prompts through Claude unless an admin disables the toggle.
-EU / EFTA / UK customers: Anthropic OFF by default. The toggle is exposed but you have to actively opt in to expose Claude inside Copilot. If you previously opted in under the legacy Anthropic terms, you must opt in again under the new subprocessor toggle.
-Government clouds (GCC, GCC High, DoD) and other sovereign clouds: Not in scope at all. No toggle exposed. FedRAMP certification has not been established.
-Downstream B2B SaaS that uses Microsoft 365 to process customer data: Anthropic is now indirectly a sub-processor of YOUR data chain wherever Copilot touches the data. Your customers are entitled to know.

§ III

What Article 28(2) requires of you

Under GDPR Article 28(2), a processor must not engage a new sub-processor without the controller's prior authorisation, either specific or general. Commercial SaaS contracts almost universally operate under general written authorisation: the controller agrees up front that the processor may use sub-processors, subject to maintaining a current list and providing prior notice of additions or replacements so the controller can object before the change takes effect.

Microsoft introducing Anthropic as one of its own subprocessors cascades into your chain whenever you process personal data through Microsoft 365. The change is documented and dated; the obligation is on you to (a) update your published sub-processor list and (b) notify your customers in line with the notice window your DPA specifies, which is most commonly 10 to 30 days. The EDPB Opinion 22/2024 spells out that the identity of all processors and sub-processors must be “readily available at all times” - the legal expectation is a current, accessible list, not an annual refresh.

§ IV

A customer notification template you can send today

Below is a starting-point Article 28(2) notification that names the actual change, cites Microsoft's documentation, and lays out the standard objection mechanic. Edit the bracketed fields, adapt the tenant-configuration paragraph to what you actually did, and send. The references at the bottom give your customers the same primary sources to verify against.

Subject: Sub-processor update: Anthropic via Microsoft 365 (Article 28(2) notice)

Hello {customer name},

This is a sub-processor notification under Article 28(2) of the GDPR and section {DPA section reference} of our Data Processing Addendum.

Effective 7 January 2026, Microsoft has added Anthropic, PBC as a sub-processor to Microsoft Online Services. Microsoft has enabled Anthropic models on by default for most customers in its commercial cloud (this excludes customers in the European Union, the European Free Trade Association and the United Kingdom, for whom Anthropic is off by default). Because {your company} uses Microsoft 365 Copilot as part of how we deliver {product/service}, Anthropic is now indirectly a sub-processor of {your company} where Copilot processes data on your behalf.

What Microsoft has said about scope:
- Anthropic models are excluded from the EU Data Boundary and from in-country processing commitments where applicable.
- Anthropic models operate under Microsoft's Product Terms and the Microsoft Data Protection Addendum.
- Government cloud (GCC, GCC High, DoD) tenants are not affected.

What this means for you:
- Our published sub-processor list now reflects this change (see {link to your subprocessor page}).
- We have {disabled Anthropic at the tenant level / restricted Anthropic to {team} / accepted the default and documented it}, in line with our overall data-processing posture.
- This notice is provided in compliance with the {N}-day prior-notice window under our DPA. If you wish to object, please reply to this email by {deadline}.

If you have any questions about how Anthropic is or is not used inside your data, please reach out to {DPO email or contact}.

{Signature, role, company}

References:
- Microsoft Learn, "Anthropic as a subprocessor for Microsoft Online Services":
  https://learn.microsoft.com/en-us/microsoft-365/copilot/connect-to-ai-subprocessor
- Microsoft Online Services subprocessor list: https://aka.ms/subprocessor

§ V

The recurring problem this is one instance of

Microsoft + Anthropic is the highest-profile sub-processor change of 2026 so far, but it is not the only one and it will not be the last. Across the 18 SaaS providers Registora monitors daily, every one of them updates its own sub-processor list at least once a year. Stripe, AWS, Vercel, Cloudflare, Twilio, Sentry, OpenAI, Anthropic, and the others publish those changes to their own pages; the responsibility for cascading the relevant change into your own sub-processor disclosure and your customer notice sits with you. That is the recurring Article 28(2) work nobody wants to remember to run.

Registora hosts your subprocessor register on your own subdomain (or custom domain), monitors every upstream provider daily, amends your register the moment any of them changes, and drafts the Article 28(2) customer email for you to review and send. The free tier hosts up to five subprocessors. Growth (49 USD per month) covers the full list, custom domain, customer notification automation, REST API, and webhooks. See the chain report for the broader picture of how concentrated your upstream actually is, and /check to audit any public site for the third parties it loads.

§ VI

Sources

-Microsoft Learn - Anthropic as a subprocessor for Microsoft Online Services (canonical Microsoft documentation; covers the toggle, the dates, and the EU Data Boundary exclusion).
-Microsoft Online Services subprocessor list (Service Trust Portal) - the live Microsoft sub-processor register.
-Microsoft Products and Services Data Protection Addendum (DPA) - the contractual framework Microsoft cites as governing Anthropic use under its enterprise umbrella.
-EDPB Opinion 22/2024 - sub-processor identities must be “readily available at all times”.
-EDPB CEF 2026 - the 25-regulator coordinated enforcement action on transparency that puts Article 13/14 (and Article 28 by extension) under year-long supervisory focus.

FAQ

Frequently asked questions

What actually changed on January 7, 2026?: Microsoft activated Anthropic as a default-on subprocessor for Microsoft 365 Copilot for most commercial-cloud customers outside the European Union, EFTA, and the United Kingdom. The new admin toggle "AI providers operating as Microsoft subprocessors" first appeared in the Microsoft 365 admin center on December 8, 2025; the underlying subprocessor relationship became effective on January 7, 2026. The legacy Anthropic opt-in toggle (which used Anthropic's separate commercial terms and DPA) was deprecated on the same date and replaced by the new subprocessor toggle under Microsoft's enterprise framework.
Is this in scope for my organisation?: You are affected if you are a commercial-cloud Microsoft 365 customer outside the EU, EFTA, and the UK. For those customers the toggle is default ON and Anthropic models are enabled across Microsoft 365 Copilot, Researcher, Copilot Studio, Power Platform, Agent Mode in Excel, and Word/Excel/PowerPoint agents. Customers in the EU, EFTA, and UK have the toggle default OFF; on April 3 2026 Microsoft introduced a separate admin setting that allows EU/EFTA/UK admins to enable Anthropic as the default model for Copilot in M365 apps if they opt in. Government clouds (GCC, GCC High, DoD) and other sovereign clouds are not in scope at all; no toggle is exposed there.
Why does this matter for the EU Data Boundary?: Microsoft's own documentation states verbatim that "Anthropic models deployed in Microsoft offerings ... are currently excluded from the EU Data Boundary, and when applicable, in-country processing commitments." If you depend on the EU Data Boundary as part of how you assure your own customers about where their data is processed, enabling Anthropic models inside your Microsoft 365 tenant breaks that assurance. EU/EFTA/UK customers stay default-OFF precisely for this reason.
What does GDPR Article 28(2) require me to do?: If you are a processor of personal data and Microsoft 365 is part of how you process it, Anthropic is now a new sub-processor in your data chain. GDPR Article 28(2) requires you to inform your controllers (your customers) of any intended addition or replacement of a sub-processor and give them the opportunity to object. Most commercial SaaS DPAs operate under "general written authorisation" which means a list-plus-prior-notice mechanism; the practical implication is that you need to update your public subprocessor disclosure and notify your customers in line with whatever notice window your DPA specifies (commonly 10-30 days).
How do I opt out as a Microsoft 365 admin?: Go to the Microsoft 365 admin center, then Copilot -> Settings -> AI providers operating as Microsoft subprocessors. There you can either disable Anthropic as a Microsoft subprocessor entirely or restrict access to specific users or Microsoft Entra ID security groups. You must be a global administrator to make this change. Disabling Anthropic will limit features that rely on Claude models in Copilot Studio, Researcher, and the Excel/Word/PowerPoint agents.
What about future changes to my subprocessor chain?: This is the recurring problem. The Microsoft + Anthropic event is one example; AWS, Google Cloud, OpenAI, Cloudflare, Stripe and every other major SaaS provider you depend on updates its own subprocessor list periodically and you are downstream of every one of those updates. Registora monitors the published subprocessor pages of 18 of these providers daily and drafts the GDPR Article 28(2) customer notification for you the moment any of them change. The free tier hosts up to five subprocessors on your own subdomain.

This page presents facts cited from Microsoft's own published documentation and the EDPB. It does not constitute legal advice; whether a given organisation is obligated to notify particular customers about this sub-processor change depends on contracts, tenant configuration, and the data actually being processed. Consult qualified counsel for specifics. We will update this page as Microsoft amends the underlying documentation.

Your turn

The next sub-processor change is already coming. Let Registora draft the notice.

We host your public sub-processor page on your own subdomain, monitor every upstream provider daily, amend your register the moment one changes, and draft the Article 28(2) customer email automatically. Free tier hosts up to five subprocessors.

Start your register →Audit your site See the chain report →