FYI - I just found this at http://azure.microsoft.com/en-us/support/trust-center/compliance/
It specifically mentions "healthcare", but I'd like to know if any major hospitals are using Azure storage -- *Greg K* Australian Government Information Security Registered Assessors Program (IRAP) Azure has been assessed against the Australian Government Information Security Registered Assessors Program (IRAP) <http://www.asd.gov.au/infosec/irap/index.htm> and a letter of compliance <http://blogs.msdn.com/cfs-file.ashx/__key/communityserver-components-postattachments/00-10-56-28-45/Microsoft-Azure-_2D00_-IRAP-Assessment-Letter-of-Compliance-250914.pdf> has been issued for in-scope services <http://azure.microsoft.com/en-us/support/trust-center/services/>. The IRAP assessment provides assurance for public sector customers (and the partners that serve them) that Microsoft has appropriate and effective security controls in place for the processing, storage and transmission of Unclassified Sensitive data within Microsoft Azure. Unclassified Sensitive data represents the majority of federal government, healthcare, education and state government data in Australia.
