Cloud Computing Breakout Image

Office 365 Privacy

Summary of customer information on Office 365 privacy.

Matrixforce has summarized the major information requested by customers concerning Office 365 Privacy. Microsoft strives to be a leader in industry privacy and transparency. To learn more about privacy at Microsoft, download the Standard Response to Request for Information documents from the Office 365 Trust Center.

  • No Advertising. Office 365 does not build advertising products out of customer data or scan email or documents. Browser analytics are gathered in the Microsoft Online Portal for aggregate site usage by users.
  • No Mingling. Office 365 keeps customer data separate from consumer services such as Live. Microsoft Online Services use separate systems that are physically and logically separate from consumer systems.
  • Data Portability. Customers own their data, and retain all rights, title and interest in the data stored with Office 365. A full copy of your data can be downloaded at any time and for any reason, without any assistance from Microsoft. Upon Office 365 subscription expiration or termination, Microsoft provides by default 90 days of limited access to export data.
  • Data Limits. Core customer data is not accessed for administration unless explicitly requested via customer service request for operations and troubleshooting. Normal personalization or communications concerning tips and advice utilize no access to core customer data. Customer account information only must be accessed for purchase and billing questions. Microsoft does not voluntarily provide law enforcement access to customer data and tries to redirect such an entity to the customer, unless legally required to disclose information. Follow this link to learn more about Microsoft Online Services Data Limits.
  • Administrative Access. Access to customer data is strictly controlled and logged and sample audits are performed both by Microsoft and third parties to attest that access is only for appropriate business purposes. Limited key personnel only of the Operations Response Team may access core customer data only as needed and by exception. Support, Engineering, and others in Microsoft have no access to core customer data. Partners have access to core customer data only with customer permission. Follow this link to learn more about Microsoft Online Services Administrative Access.
  • Data Centers. As a standard policy, Microsoft does not disclose the location of its data centers. Microsoft operates between 10 and 100 data centers located around the world. The following are locations Microsoft has elected to disclose to the general public:
    • For customers with a Ship-To Address in the Americas:
      Quincy, Washington
      San Antonio, Texas
      Chicago, Illinois
    • For customers with a Ship-To Address in the European Union:
      Dublin, Ireland
      Amsterdam, Netherlands
    • For customers with a Ship-To Address in the Asia-Pacific:
      Hong Kong