SYAGA Audit
Microsoft 365 diagnostic: least privilege

We read your settings.
Never your data.

No shared password. We read your configuration with your own access, never an email or a file. You cut off access whenever you want.

Read-only, then everything is erased

No writing is possible: our application holds no write permission, Microsoft would refuse it. The scan runs in your browser; our server only sees tokens, never your data in clear. After the scan (about 1 h in memory), everything is erased: no score, no gaps, no report kept. The only thing left, in your space, is your billing: the legal minimum, deletable on request.

How we prove it
With YOUR access. You sign in with Microsoft (no shared password). The token is transient (about 1 h in memory), then destroyed. Microsoft source: OAuth ↗
You check, you revoke. Revoke = 1 click in Entra. Everything is traced in your own Microsoft logs: you confirm we only read. Microsoft source: audit logs ↗
1
Minimal access first. We only check that your audit log is enabled. No full-audit permission at this step.
2
Full audit next. Only if the log is active, we then offer read access for the full audit (directory, Exchange, Teams, Purview).
Refine my profile (size, sector), optional

Faisons d'abord connaissance (facultatif, une minute)

Avant de lancer le diagnostic, dites-nous qui vous êtes. Selon votre taille et votre secteur, vous n'êtes pas soumis aux mêmes obligations (RGPD, NIS 2, DORA) : c'est ce qui rend vos conclusions justes. Nous qualifions, nous ne décrétons jamais. Données publiques INSEE, aucune information sensible ici.

Source : Recherche d'Entreprises, INSEE Sirene, données publiques officielles.

Start my free diagnostic Free: your score + your gaps. The detailed report and the attestation: 499 EUR excl. VAT, only if you decide to. How we prove it