Skip to content

Commit 1a6b0e5

Browse files
authored
Merge pull request #17707 from MicrosoftDocs/release-privacy-supplement
Release privacy supplement
2 parents dfca90b + c8059aa commit 1a6b0e5

1 file changed

Lines changed: 55 additions & 64 deletions

File tree

docs/sql-server/sql-server-privacy.md

Lines changed: 55 additions & 64 deletions
Original file line numberDiff line numberDiff line change
@@ -48,11 +48,11 @@ Credential-related information used to secure logins, users, or accounts within
4848
|These credentials never leave the user machine via User Feedback unless customer injects it manually |Limit to Microsoft internal use with no third-party access. |User Feedback: Max 1 year|
4949
| | | |
5050

51-
## Customer content
51+
## Customer data
5252

53-
Customer content is defined as data stored within user tables, directly or indirectly. The data includes statistics or user literals within query texts that might be stored within user tables.
53+
Customer data is defined as data stored within user tables, directly or indirectly. The data includes statistics or user literals within query texts that might be stored within user tables.
5454

55-
### Examples of customer content
55+
### Examples of customer data
5656

5757
- Data values stored within the rows of any user table.
5858
- Statistics objects containing copies of values within the rows of any user table.
@@ -63,16 +63,16 @@ Customer content is defined as data stored within user tables, directly or indir
6363
|Scenario |Access restrictions |Retention requirements |
6464
|---------|---------|---------|
6565
|This data does not leave the user machine via Usage and Diagnostics Data. |- |- |
66-
|Crash Dumps may contain Customer Content and be emitted to Microsoft. |- |Crash Dumps: Max 30 days. |
67-
|Customers with their consent can send User Feedback that contains Customer Content to Microsoft. |Limit to Microsoft internal with no third-party access. Microsoft can expose the data to the original customer. |User Feedback: Max 1 year |
66+
|Crash Dumps may contain customer data and be emitted to Microsoft. |- |Crash Dumps: Max 30 days. |
67+
|Customers with their consent can send User Feedback that contains customer data to Microsoft. |Limit to Microsoft internal with no third-party access. Microsoft can expose the data to the original customer. |User Feedback: Max 1 year |
6868

69-
## End-user identifiable information (EUII)
69+
## Personal data
7070

7171
Data received from a user, or generated from their use of the product.
7272
- Linkable to an individual user.
73-
- Does not contain content.
73+
- Does not contain customer data.
7474

75-
### Examples of end-user identifiable information
75+
### Examples of personal data
7676

7777
- Interface Identification. The Full IP address
7878
- Machine Name
@@ -86,9 +86,9 @@ Data received from a user, or generated from their use of the product.
8686
|Scenario |Access restrictions |Retention requirements|
8787
|---------|---------|---------|
8888
|This data does not leave the user machine via Usage and Diagnostics Data. |- |- |
89-
|Crash dumps may contain EUII and be emitted to Microsoft. |- |Crash dumps: Max 30 days |
89+
|Crash dumps may contain personal data and be emitted to Microsoft. |- |Crash dumps: Max 30 days |
9090
|Customer identification ID may be emitted to Microsoft to deliver new hybrid and cloud features that the users have subscribed to. |- |Currently no such hybrid or cloud features exist.|
91-
|Customers with their consent can send User Feedback that contains customer content to Microsoft.|Limit to Microsoft internal use with no third-party access. Microsoft can expose the data to the original customer. |User feedback: Max 1 year |
91+
|Customers with their consent can send User Feedback that contains customer data to Microsoft.|Limit to Microsoft internal use with no third-party access. Microsoft can expose the data to the original customer. |User feedback: Max 1 year |
9292

9393
## Internet-based services data
9494

@@ -108,77 +108,68 @@ Data needed to provide Internet-based services, per the SQL Server EULA.
108108
|Scenario |Access restrictions |Retention requirements|
109109
|---------|---------|---------|
110110
|May be used by Microsoft to improve features and/or fix bugs in current features. |Limit to Microsoft internal use with no third-party access. Microsoft can expose the data to the original customer. For example, dashboards |Min 90 days - Max 3 years |
111-
|Customers with their consent can send User Feedback that contains Customer Content to Microsoft. |Limit to Microsoft internal use with no third-party access. |Customers with their consent can send User Feedback that contains Customer Content to Microsoft. |
111+
|Customers with their consent can send User Feedback that contains customer data to Microsoft. |Limit to Microsoft internal use with no third-party access. |Customers with their consent can send User Feedback that contains customer data to Microsoft. |
112112
|Power View and SQL Reporting Services Map Item(s) may send data for use of Bing Maps. |Limit to session data |- |
113113

114-
## Organization identifiable information (OII)
114+
## Non-personal data
115115

116-
Data received from an organization, or generated from their use of the product.
117-
- Linkable to an organization.
118-
- Does not contain content.
116+
1. Data received from an organization, or generated from their use of the product. It is linkable to an organization and does not contain customer data.
119117

120-
### Examples of organization identifiable information
121-
- Organization Name (example: Microsoft Corp.)
118+
- Example
119+
- Organization name (example: Microsoft Corp.)
122120

123-
### Permitted usage scenarios
124-
|Scenario |Access Restrictions |Retention Requirements|
125-
|---------|---------|---------|
126-
| Microsoft may collect generic usage data of SQL Server instances running in Azure Virtual Machines for the express purpose of giving customers optional benefits within Azure for using SQL Server within Azure Virtual Machines. | Microsoft can expose data to the customer, such as through the Azure portal, to help customers running SQL Server in Azure Virtual Machines to access benefits specific to running SQL Server in Azure. </br></br>Microsoft will not use this data for licensing audits without customer's advance consent. | Min 90 days - Max 3 years |
127-
128-
## System metadata
121+
- Permitted usage scenarios
129122

130-
Data generated in the course of running the server. The data does not contain customer content.
123+
|Scenario |Access restrictions |Retention requirements|
124+
|---------|---------|---------|
125+
| Microsoft may collect generic usage data of SQL Server instances running in Azure Virtual Machines for the express purpose of giving customers optional benefits within Azure for using SQL Server within Azure Virtual Machines. | Microsoft can expose data to the customer, such as through the Azure portal, to help customers running SQL Server in Azure Virtual Machines to access benefits specific to running SQL Server in Azure. </br></br>Microsoft will not use this data for licensing audits without customer's advance consent. | Min 90 days - Max 3 years |
131126

132-
### Examples of system metadata
127+
2. Data that describes or is used to configure servers, databases, tables, and other resources created or provided by customers. It includes database table and column names but not the contents of database rows or other customer data. Customers should not place any personal data in those fields or create applications designed to store personal data in these fields. For the permitted usage scenarios below, only hash form is used to determine usage patterns to improve the product.
133128

134-
The following are considered system metadata when they do not include customer content, object metadata, customer access control data, or EUII:
129+
- Example
130+
- SQL Server database names
131+
- Table names and column names
132+
- Statistics names
135133

136-
- Database GUID
137-
- Hash of machine name
138-
- Hash of instance name
139-
- Application name
140-
- Behavioral/usage data
141-
- SQL Customer Experience improvement program data (SQLCEIP)
142-
- Server configuration data, for example settings of sp_configure
143-
- Feature configuration data
144-
- Event names and error codes
145-
- Hardware settings and identification such as OEM Manufacturer
134+
- Permitted usage scenarios
146135

147-
Microsoft does examine application name values set by other programs that use SQL Server (example: Sharepoint or third-party packaged programs and includes this information in System Metadata sent to Microsoft when Usage Data is enabled). Customers should not place personal data, such as end-user identifiable information, in System Metadata fields or create applications designed to store personal data in these fields.
136+
> [!NOTE]
137+
> All metadata values are hashed before collection.
138+
>
148139
149-
### Permitted usage scenarios
150-
151-
|Scenario |Access Restrictions |Retention Requirements|
152-
|---------|---------|---------|
153-
|May be used by Microsoft to improve features and or fix bugs in current features.|Limit to Microsoft internal use with no third-party access. |Min 90 days - Max 3 years |
154-
|May be used to make suggestions to the customer. For example, "Based on your usage of the product, consider using feature *X* since it would perform better." |Microsoft can expose the data to the original customer, for example through dashboards. |Customer Data Security Logs: Min 3 years - Max 6 years |
155-
|May be used by Microsoft for future product planning. |Microsoft may share this information with other hardware and software vendors to improve how their products run with Microsoft software. |Min 90 days - Max 3 years|
156-
|May be used by Microsoft to provide cloud-based services based on emitted Usage and Diagnostics Data. For example, a customer dashboard showing feature usage across all SQL Server installations in an organization. |Microsoft can expose the data to the original customer, for example, through dashboards. |Min 90 days - Max 3 years |
157-
|Customers with their consent can send User Feedback that contains Customer Content to Microsoft. |Limit to Microsoft internal with no third-party access. Microsoft can expose the data to the original customer. |User Feedback: Max 1 year |
158-
|May use database name and application name to categorize databases and applications into known categories, for example, those that may be running software provided by Microsoft or other companies.|Limit to Microsoft internal with no third-party access.|Min 90 days - Max 3 years |
140+
|Scenario |Access restrictions |Retention requirements|
141+
|---------|---------|---------|
142+
|May be used by Microsoft to improve features and or fix bugs in current features. |Limited to Microsoft internal use with no third-party access. |Min 90 days - Max 3 years|
159143

160-
## Object metadata
144+
3. Data that is generated in the course of running the server. It does not contain customer data, non-personal data as listed in 1. or 2. (above), customer access control data, or personal data.
161145

162-
Data that describes or is used to configure servers, databases, tables, and other resources. Object metadata includes database table and column names but not the contents of database rows or other Customer Content. Customers should not place personal data, such as end-user identifiable information in Object Metadata fields or create applications designed to store personal data in these fields. For the permitted usage scenario's below, only hash form is used to determine usage patterns to improve the product.
146+
- Example
147+
- Database GUID
148+
- Hash of machine name
149+
- Hash of instance name
150+
- Application name
151+
- Behavioral/usage data
152+
- SQL Customer Experience improvement program data (SQLCEIP)
153+
- Server configuration data, for example settings of sp_configure
154+
- Feature configuration data
155+
- Event names and error codes
156+
- Hardware settings and identification such as OEM Manufacturer
163157

164-
### Examples of object metadata
158+
Microsoft does examine application name values set by other programs that use SQL Server (example: SharePoint or third-party packaged programs and includes this information in metadata fields sent to Microsoft when Usage Data is enabled). Customers should not place personal data in those metadata fields or create applications designed to store personal data in these fields.
165159

166-
- SQL Server database names
167-
- Table names and column names
168-
- Statistics names
160+
- Permitted usage scenarios
169161

170-
### Permitted usage scenarios
171-
172-
> [!NOTE]
173-
> All object metadata values are hashed before collection.
174-
>
175-
176-
|Scenario |Access restrictions |Retention requirements|
177-
|---------|---------|---------|
178-
|May be used by Microsoft to improve features and or fix bugs in current features. |Limited to Microsoft internal use with no third-party access. |Min 90 days - Max 3 years|
162+
|Scenario |Access restrictions |Retention requirements|
163+
|---------|---------|---------|
164+
|May be used by Microsoft to improve features and or fix bugs in current features.|Limit to Microsoft internal use with no third-party access. |Min 90 days - Max 3 years |
165+
|May be used to make suggestions to the customer. For example, "Based on your usage of the product, consider using feature *X* since it would perform better." |Microsoft can expose the data to the original customer, for example through dashboards. |Customer Data Security Logs: Min 3 years - Max 6 years |
166+
|May be used by Microsoft for future product planning. |Microsoft may share this information with other hardware and software vendors to improve how their products run with Microsoft software. |Min 90 days - Max 3 years|
167+
|May be used by Microsoft to provide cloud-based services based on emitted Usage and Diagnostics Data. For example, a customer dashboard showing feature usage across all SQL Server installations in an organization. |Microsoft can expose the data to the original customer, for example, through dashboards. |Min 90 days - Max 3 years |
168+
|Customers with their consent can send User Feedback that contains customer data to Microsoft. |Limit to Microsoft internal with no third-party access. Microsoft can expose the data to the original customer. |User Feedback: Max 1 year |
169+
|May use database name and application name to categorize databases and applications into known categories, for example, those that may be running software provided by Microsoft or other companies.|Limit to Microsoft internal with no third-party access.|Min 90 days - Max 3 years |
179170

180-
## Telemetry controls
171+
## System generated logs controls
181172

182-
Instructions on how telemetry can be turned on/off in product can be referenced here - https://support.microsoft.com/help/3153756/how-to-configure-sql-server-2016-to-send-feedback-to-microsoft.
173+
Instructions on how system generated logs can be turned on/off in product can be referenced here - [Configure usage and diagnostic data collection for SQL Server (CEIP)](usage-and-diagnostic-data-configuration-for-sql-server.md).
183174

184175
[!INCLUDE[get-help-options](../includes/paragraph-content/get-help-options.md)]

0 commit comments

Comments
 (0)