Microsoft responds to Windows 10 privacy concerns

by Mark Tyson on 29 September 2015, 10:06

Tags: Microsoft (NASDAQ:MSFT), Windows 10

Quick Link: HEXUS.net/qacuyu

Add to My Vault: x

Microsoft's Windows and Devices boss Terry Myerson has written a blog post about Privacy and Windows 10. He seeks to clear up what types of data that Windows 10 might collect and highlight how the user is in control. The Windows boss gives examples of how passing some forms of information to Microsoft developers is beneficial for all Windows users. Furthermore Myerson says that any data that is collected is encrypted in transit and stored in secure facilities at Microsoft.

Two privacy principles are said to be behind Windows 10:

  1. Windows 10 collects information so the product will work better for you.
  2. You are in control with the ability to determine what information is collected.

For the sake of the first principle, above, Microsoft collects safety and reliability data. It says that this data includes "an anonymous device ID, device type, and application crash data which Microsoft and our developer partners use to continuously improve application reliability". Myerson stresses that steps are taken to avoid collecting any content, files and information that might directly identify the user.

An example of the above reliability data being used by Microsoft is given in which a particular graphics driver was crashing on some Windows 10 PCs and also causing reboots. Microsoft says that it saw this trend and worked with the vendor to provide an update/fix within 24 hours. Later the reliability data was used to confirm the effectiveness of the fix. It is noted that Enterprise customers will be able to opt out of this kind of data collection (sometimes referred to as telemetry data) following an OS update later this year.

A flagship part of Windows 10 was the inclusion of the software assistant called Cortana. To work at its best this system uses a few morsels of information to help anticipate things you might want to know about and therefore be a better, more useful assistant on the whole. Data such as sports team allegiance, locations and text input history are used by such assistants on mobile and now on PCs. Myerson again has a point to stress - that the availability of this information to Microsoft is up to the end user and you can update your settings at any time.

Lastly the Windows Blog turns to the subject of collecting advertising data. But rather than talk about Microsoft's own policies Myerson points at 'others' to say "Unlike some other platforms, no matter what privacy options you choose, neither Windows 10 nor any other Microsoft software scans the content of your email or other communications, or your files, in order to deliver targeted advertising to you". It is quite trivial to turn off the Windows advertising ID which may be used to keep track of which ads you've seen across apps.

People looking for more in-depth explanations of the One Microsoft Privacy Policy are directed towards the full official document online. Microsoft has posted new guidance content regarding telemetry aimed at IT Pros, and about all aspects of data collection via online services aimed at consumers.

HEXUS Forums :: 48 Comments

Login with Forum Account

Don't have an account? Register today!
Posted by Spreadie - Tue 29 Sep 2015 10:17
The problem, as I see it, is that fact that Windows 10 privacy settings default to “opt-in”, rather than “opt-out”. If the settings are in our best interests, why doesn't Microsft make a valid case for people switching them on, rather than make us jump through hoops to switch them off!
Posted by enemys - Tue 29 Sep 2015 10:31
Spreadie
The problem, as I see it, is that fact that Windows 10 privacy settings default to “opt-in”, rather than “opt-out”. If the settings are in our best interests, why doesn't Microsft make a valid case for people switching them on, rather than make us jump through hoops to switch them off!
Yeah, because it's sooo hard to use these switches (you are asked whether you want defaults or your own settings) during OS installation…
Posted by Corky34 - Tue 29 Sep 2015 10:32
Question: How can a device ID be anonymous, isn't the very nature of an ID to identify someone or something, if so how can it be anonymous? They say steps are taken to avoid information that might directly identify the user but does that mean indirectly identify the user is OK?

Also if their not scanning the content of my email or other communications, or my files, in order to deliver targeted advertising, then what is the recently added (I believe on the fast ring) suggestions feature in the startmenu, is that not advertising apps from the app store?
Posted by kalniel - Tue 29 Sep 2015 10:35
Corky34
Question: How can a device ID be anonymous, isn't the very nature of an ID to identify someone or something, if so how can it be anonymous? They say steps are taken to avoid information that might directly identify the user but does that mean indirectly identify the user is OK?

Essentially, yes - you can identify the device, or even a user ID no problem, as long as there is no similarity between said ID and any personally identifying information. Same in the medical world - as long as a patients ID number bears no relation to any personally identifying feature of the patient then you can bandy the ID about pretty well as much you like. Only a problem if some kid is named 1567812 ;)
Posted by KeyboardDemon - Tue 29 Sep 2015 10:39
Anonymised telemetry data that could be used to resolve driver, software or potential security risks doesn't seem like a bad thing to me.

A personal profile that helps me find specific results for searches based on previous search history could be both useful and also intrusive. I can think of one potential scenario here for example when searching for surprise wedding anniversary presents or birthday presents for my wife I most certainly wouldn't want any trace of those results coming up into view when my wife is using the PC, however it could be quite handy to search for things I want her to buy me as when she uses the PC she will see ads that are tailored to my previous search history but might not know she is seeing that GTX980Ti as a result of my having completed 10's or 100's of searches for it. lol

IMHO we are going to have live with advertising on the internet moving forward, I prefer the idea of having my ads targeted so that I am not being constantly bombarded by ads for things that I have no interest in at all, I like that some services such as Facebook let me tell them when I don't like an ad so that it doesn't get displayed again, or even when I don't want to see posts from a particular app or person. Targeting ads means that advertisers can reach the people they want to reach in the most cost effective way possible, not targeting ads could potentially end up costing advertising more when they want to tell people like me about their latest GTX980Ti cards which in turn could drive up the price of that card. So while I am not keen on having too much personal information about me being disclosed, I am also not very keen having to pay more for products to cover the costs so advertisers can find more creative ways to find me or on seeing advertising for dog grooming products, though my neighbour would love to see those as she found that a GTX980Ti doesn't really help bring her Afghan Hound up to pedigree show standards.

SEE NEWER »