Windows 10 Privacy: 30 Ways Your Computer Connects to Microsoft

Data Transmission in Windows 10: A Detailed Overview

Windows 10 exhibits a greater degree of data transmission back to Microsoft than any preceding Windows iteration. Accompanying the release of Windows 10 was a revised privacy policy and services agreement, a comprehensive document spanning 45 pages of legal terminology.

Should Google have authored such a document, Microsoft might employ the term "Scroogled" to highlight perceived privacy concerns.

Industry-Wide Data Collection Practices

It's important to note that Microsoft is not unique in this practice. Data collection has become a standard feature across numerous modern platforms, including the web, Android, and iOS.

Microsoft actively gathers data to refine ad targeting, customize the operating system experience, and enhance its software and service offerings.

Understanding the Scope of Data Collection

Editor's Note: Data transmission is pervasive. For example, the Chrome browser relays search queries back to Google.

Advertising networks monitor user activity across a vast number of websites, even including this one. Furthermore, the advertising systems employed by Facebook and Amazon often raise concerns regarding user privacy.

This article isn't intended as a condemnation of Microsoft specifically. However, given the heightened public interest in privacy and Windows 10, we compiled a list detailing the data transmitted by Windows 10, allowing readers to form their own informed opinions.

The goal is to provide transparency regarding the information being sent and empower users to make decisions aligned with their privacy preferences.

Privacy Settings, Targeted Advertising, Location Services, and Data Feedback in Windows 10

Related: Understanding the Differences Between Windows 10’s Express and Custom Installation Options

Numerous configuration options regarding data sharing can be altered following the initial installation process by selecting "Customize settings" rather than "Use express settings." However, the majority of users typically proceed with the express settings, which automatically activates several features that transmit data to Microsoft.

These features are largely managed within the Privacy section of the Settings app. (Access this by clicking the Start button, then Settings, and finally selecting Privacy.) Some settings control app access to specific data, such as webcam usage. Others establish system-wide privacy preferences.

General Privacy Options

Within the General section, you will encounter the following:

1. Allowing Apps to Utilize Advertising ID – Enabling this feature assigns a unique advertising ID, allowing tracking of your activity across various "Windows Store" or universal applications. Microsoft leverages this to deliver targeted advertisements.
2. SmartScreen Filter for Web Content - This activates the SmartScreen filter within universal apps, providing protection against potentially harmful web content. It is also functional in File Explorer, Microsoft Edge, and Internet Explorer, though with differing configurations.
3. Sharing Typing and Writing Information - Enabling this option transmits data regarding your typing and writing habits to Microsoft servers for the purpose of improving typing and writing functionalities.
4. Enabling Locally Relevant Content via Language List - With this enabled, websites can detect your installed languages and present content in your preferred language.

A link labeled "Manage my Microsoft advertising and other personalization info" is located at the bottom of this section. Clicking this directs you to a webpage where you can manage "Personalized ad preferences." Alternatively, you can directly access this page at https://choice.microsoft.com/en-us/opt-out.

5. Personalized Ads in Your Browser - This setting governs whether Microsoft displays personalized advertisements specifically within the browser you are currently using.
6. Personalized Ads Across Your Microsoft Account - This setting, linked to your Microsoft account, determines whether you receive personalized ads on Windows, Windows Phone, Xbox, and other devices connected to your account.

Location Services

The Location screen activates location-based services. While not explicitly stated on the Location Settings window, the custom setup screen indicates that enabling this also shares some location data with Microsoft and its trusted partners to enhance location services.

7. Location Sharing and History - Your location can be shared with individual apps you authorize. Location history is also available to apps and is stored locally for a period of 24 hours. However, some data is reportedly shared with Microsoft and its partners when location services are active.

Speech, Inking, and Typing Data

The "Speech, inking, & typing" section encompasses a wide range of data collection:

8. Voice, Writing, and Usage Patterns - Windows and Cortana can learn about you by logging your voice input, handwriting, contacts, calendar events, and typing patterns. You can halt this data collection by selecting "Stop getting to know me," which clears data stored locally on your device.

9. Cloud-Based Speech, Inking, and Typing - Clicking "Go to Bing and manage personal info for all your devices" allows you to clear personalization data stored on Microsoft’s servers, linked to your Microsoft account. This link directs you to https://bing.com/account/personalization. Utilize the "Clear" button within the "Other Cortana Data and Personalized Speech, Inking and Typing" section to remove this data.

Feedback and Diagnostics

The "Feedback & diagnostics" setting presents a noteworthy option. Surprisingly, Windows 10 does not permit complete disabling of this feature.

10. Diagnostic and Usage Data Levels - By default, Windows 10 transmits "Full" diagnostic and usage data to Microsoft, representing their new telemetry system, codenamed "Asimov." You can select either "Enhanced" or "Basic" diagnostic data. Complete disabling is only possible on Enterprise editions of Windows through modification of the "Allow Telemetry" option within the group policy editor. This modification is ineffective on Professional editions. Setting the option to "0" ostensibly disables telemetry, but the Group Policy editor clarifies that this setting is ignored except on Enterprise versions, and instead defaults to sending "Basic" telemetry data.

Cortana and Bing Search

The integration of Cortana and Bing search within Windows 10 raises privacy considerations. It's important to understand the data collection practices associated with these features.

As a point of reference, disabling Bing within the Windows 10 Start Menu is a possible adjustment for privacy-conscious users.

Data Collection by Cortana

Utilizing Microsoft’s Cortana virtual assistant necessitates the provision of a significant amount of user data for optimal functionality.

Cortana - Upon activation, Cortana gathers and utilizes a broad spectrum of information. This includes “location data and its history, contact lists, voice commands, search queries, calendar events, communication and content history from various applications and messages, and other device-specific details.”
Cortana - Furthermore, Cortana records browsing activity within the Microsoft Edge browser.
Cortana - This extensive data requirement mirrors the practices of similar assistants like Google Now and Siri, which correspondingly collect data for Google and Apple.

Bing Search in the Start Menu

Even with Cortana disabled, search queries entered directly into the Start menu are processed by Bing and the Windows Store.

Consequently, Microsoft receives and stores your Start menu search terms unless you specifically disable the Bing integration.

This data transmission occurs regardless of whether Cortana is actively in use.

Device Encryption and Your BitLocker Recovery Key

Related: The Reasons Behind the FBI's Limited Concern Regarding Windows 8.1 Encryption

A feature carried over from Windows 8.1, modern devices with the necessary hardware – a characteristic of most new Windows 8.1 and 10 systems – are automatically secured using encryption similar to BitLocker, referred to as "device encryption."

13. The BitLocker recovery key for device encryption - Automatic key uploading to Microsoft servers occurs exclusively when a Microsoft account is utilized for login. This allows for recovery access should the key be lost. However, it also implies that Microsoft, or any entity gaining access to the key from Microsoft, possesses the capability to decrypt your encrypted data. This represents a significant improvement over the prior state where Windows Home editions lacked encryption entirely, leaving data vulnerable to unauthorized access.

Avoiding Microsoft account login prevents key uploading, but also disables device encryption. Alternatively, upgrading to Windows Professional allows the use of standard BitLocker, offering optional key storage with Microsoft. Recovery keys can be located at https://onedrive.live.com/recoverykey.

Storing your recovery key with Microsoft provides a convenient backup option. However, it's crucial to understand the implications regarding potential access by third parties.

The choice between convenience and control rests with the user. Consider your individual security needs and risk tolerance when deciding how to manage your BitLocker recovery key.

Device encryption significantly enhances data security on compatible Windows devices. Understanding the recovery key process is vital for maintaining access to your information.

Windows Defender

Windows 10 incorporates Windows Defender as its built-in antivirus solution. It is activated by default upon installation. This represents an evolution from the previously available Microsoft Security Essentials, which was offered as a free download for Windows 7 systems.

Configuration options for Windows Defender can be accessed through the Settings app, specifically under the 'Update & security' section, then selecting 'Windows Defender'. Real-time protection is automatically engaged by the system.

Disabling real-time protection is not permanent. Windows Defender will re-enable this crucial security feature at a later time. A complete deactivation requires the installation of a third-party antivirus program.

When another antivirus application is active, Windows Defender ceases operation to avoid conflicts.

Key Features

14. Cloud-based Protection - This feature transmits information regarding potential security threats detected by Windows Defender to Microsoft for analysis.
15. Sample Submission - This process aids in enhancing Windows Defender’s effectiveness by forwarding discovered malware samples to Microsoft.

Both cloud-based protection and sample submission are functionalities commonly found in leading third-party antivirus software. Users have the option to disable these features if desired.

These features contribute to the ongoing improvement of Windows Defender’s threat detection capabilities.

SmartScreen Application Verification

Related: Understanding the SmartScreen Filter in Windows 8 and 10

The SmartScreen filter, initially featured in Windows 8, is also integrated within Windows 10. Upon executing a downloaded application, SmartScreen queries Microsoft’s servers to assess the application’s standing. A positively recognized application will launch without interruption.

Conversely, if an application is identified as malicious, Windows 10 will prevent its execution. Should the application be unfamiliar, a warning will be displayed, and user authorization will be required before proceeding.

SmartScreen Configuration in Windows

16. Managing Windows SmartScreen via File Explorer - Control over these settings is available through the traditional Control Panel. Access these settings by opening the Start menu, entering "smartscreen," and selecting "Change SmartScreen settings."

This action directs you to the System and Security > Security and Maintenance section within the Control Panel. Selecting "Change Windows SmartScreen settings" allows you to disable SmartScreen if desired.

Microsoft Edge

This article explores the features within Microsoft Edge, the web browser included with Windows 10. It also touches upon related functionalities like SmartScreen and Cortana.

Privacy settings within Edge are accessible through the settings menu. Navigate to Settings and then select "View advanced settings" to manage your privacy preferences.

Privacy and Assistance Features

17. Utilizing Cortana for Assistance - Enabling Cortana within Microsoft Edge allows the assistant to monitor your browsing activity and retain associated data.
18. Search Suggestions While Typing - As you input text into the address bar, your keystrokes are transmitted to your default search engine – typically Bing – to provide search suggestions.
19. SmartScreen Filter for Enhanced Security - Edge incorporates the SmartScreen filter, similar to Google Safe Browsing, to actively block access to potentially harmful websites.

Data saved within Microsoft Edge can be synchronized with your Microsoft account online, if you choose to enable this feature.

The SmartScreen filter provides a layer of protection against malicious websites and potentially dangerous downloads.

It's important to note that most contemporary browsers, excluding Firefox with its distinct address and search bar configuration, operate with search suggestions enabled by default.

Cortana's integration allows for a personalized browsing experience, but also involves data tracking.

The SmartScreen filter is a crucial component of Edge's security infrastructure.

Internet Explorer

Related information can be found regarding disabling and removing suggested sites from Internet Explorer 8.

Despite declining usage, Internet Explorer remains available, though it is no longer the standard web browser for most users.

20. SmartScreen - Internet Explorer incorporates SmartScreen functionality, which can be managed through the settings menu. Access this by clicking the gear icon, navigating to Safety, and then choosing to disable the SmartScreen filter.
21. Enable Suggested Sites - While not activated by default, this feature is still present within the Advanced settings of the Internet Options window. This relatively obscure aspect of Internet Explorer has existed for some time, and it transmits your browsing data to Microsoft should you choose to enable it.
22. Bing Suggestions - Similar to the Edge browser, any text entered into the address bar is transmitted to Microsoft’s Bing search engine to generate search suggestions. This behavior can be altered by changing your default search engine or by selecting "Turn off suggestions (stop sending keystrokes to Bing)" after typing in the address bar.

The transmission of keystrokes to Bing can be halted by utilizing the provided option within the browser.

Users should be aware of the data collection implications of enabling certain Internet Explorer features.

Microsoft Account and Synchronization

Windows 10, mirroring the approach of Windows 8, suggests utilizing a Microsoft account for login. Employing a Microsoft account provides a unified login experience across various Microsoft platforms, including Outlook.com, Office 365, OneDrive, Skype, and MSN, among others.

This integration unlocks numerous online functionalities within Windows 10. These include access to the Windows Store, utilization of many pre-installed applications requiring a Microsoft account, seamless OneDrive file access directly within File Explorer, and a range of synchronization capabilities.

However, the option to utilize a local user account remains available for those who prefer it.

Key Features of Microsoft Account Integration

23. Settings Synchronization - A diverse array of Windows settings, encompassing saved passwords and browser data, are automatically synchronized when you are logged in with a Microsoft account. Configuration of these options can be found under Settings > Accounts > Sync your settings.
24. Device Management - Microsoft maintains a record of devices on which you have authenticated using your Microsoft account. This list is accessible at https://account.microsoft.com/devices.

The tracking of logged-in devices allows for account management and security oversight.

Synchronization of settings ensures a consistent user experience across multiple devices linked to the same Microsoft account.

Understanding Personalized Experiences in Microsoft Services

Microsoft leverages your account information to tailor its services to your preferences. As stated by Microsoft itself, signing into your Microsoft account enables personalization across platforms like Bing, MSN, and Cortana.

Managing Personalization Settings

You have the ability to control the personal data and "interests" used for this personalization. This can be managed directly through the Microsoft account personalization page located at https://bing.com/account/personalization.

Controlling Your Bing Search History

Utilizing Bing search through the Windows 10 Start menu or within the Edge browser results in a search history associated with your Microsoft account.

This history is recorded and can be reviewed and cleared at any time. Access your Bing search history via https://bing.com/profile/history.

Important Note: Regularly reviewing and managing these settings allows you to maintain control over your data and refine your personalized experience.

Windows Update, Store, and Activation Processes

Related: Essential Information Regarding Windows Update in Windows 10

Although not strictly transmitting data "home," Windows Update utilizes your internet upload capacity by default to distribute Windows Updates to other users. This functions similarly to the BitTorrent system, and parallels the update distribution method employed by Blizzard’s Battle.net platform. Configuration of these behaviors is accessible through Settings > Update & security > Windows Update > Advanced options > Choose how updates are delivered.

Users have the option to restrict Windows to sharing updates exclusively with computers on their local network, rather than across the broader Internet.

27. Windows Update Functionality - The Windows 10 Home edition mandates the automatic installation of security, driver, and feature updates. Preventing automatic update downloads is only achievable by designating your device’s connection as a metered connection or by upgrading to Windows 10 Pro. Fortunately, a method exists to selectively block updates that are not desired.
28. Windows Store Operations - The Windows Store automatically connects with Microsoft servers to download updated versions of pre-installed universal applications, such as Microsoft Edge. Updates for components like Cortana and the Start menu are also delivered through the Windows Store.
29. Windows Activation Procedures - Windows continues to incorporate Windows Activation, a process that verifies with Microsoft’s servers that your Windows installation is correctly licensed and activated.

Wi-Fi Sense

Related: What is Wi-Fi Sense and Why Does It Want Your Facebook Account?

By default, the Wi-Fi Sense functionality is activated. It facilitates automatic connections to recommended open hotspots and networks that have been shared by your contacts on Outlook.com, Skype, and Facebook.

Wi-Fi Sense - Management of these settings is found under Settings > Wi-Fi > Manage Wi-Fi settings. It’s important to note that Windows 10 does not automatically distribute your Wi-Fi network password.

However, should a friend gain access to your password and connect, then select the Share function, it's possible for them to disseminate it to their entire network of contacts on Facebook, Skype, and Outlook.com, granting them access to your Wi-Fi network.

This compilation represents a cautious assessment and may not be exhaustive. Numerous other methods through which Windows 10 potentially transmits data exist.

Windows 10 integrates applications for a range of Microsoft services, including Cortana, Bing, Outlook.com, OneDrive, Groove Music, MSN, and Xbox. Each service operates under its own privacy guidelines and may store your data in distinct locations if utilized.

This practice is increasingly common in modern operating systems and services. While opinions vary, many users are either unconcerned or dissatisfied with this data collection. Windows is simply adopting a prevalent trend.

Many of these functionalities were already incorporated into Windows 8 and 8.1. Nevertheless, Microsoft could improve transparency by consolidating these options into a single location and providing clearer explanations.

Currently, these settings are dispersed throughout the Windows 10 interface and across various Microsoft websites.

Topics

More