{"id":10937,"date":"2019-08-30T00:02:00","date_gmt":"2019-08-29T22:02:00","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=10937"},"modified":"2019-08-29T23:19:36","modified_gmt":"2019-08-29T21:19:36","slug":"windows-10-once-again-facing-eu-gpdr-investigation","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2019\/08\/30\/windows-10-once-again-facing-eu-gpdr-investigation\/","title":{"rendered":"Windows 10 once again facing EU GPDR investigation"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"http:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/win102.jpg\" width=\"58\" height=\"58\" align=\"left\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2019\/08\/28\/windows-10-erneut-im-fokus-der-eu-datenschtzer\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]Microsoft has once again come into the focus of the European data protection watch guards with regard to Windows 10 privacy. The Dutch data protection authority (DPA) has accused Microsoft of remotely collecting user data of Windows 10 Home and Pro systems and thus possibly violating European Union (EU) data protection regulations (GDPR).<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg08.met.vgwort.de\/na\/b1fa7fc9ce704affb5cd3286b11d1175\" alt=\"\" width=\"1\" height=\"1\" \/>With its cloud and telemetry mania, Microsoft is coming under increasing fire in the EU because of the general data protection regulation (GDPR). Office 365 isn't conform to the GDPR &#8211; and Windows 10 is also facing data protection investigations. I have been blogging about this topic in since 2015. Within the last four years, Microsoft has had partly improved its data protection policy. Now there are new accusations and an investigation order has been given to the Irish data protection authority &#8211; this time for Windows 10.<\/p>\n<h2>Dutch data protection authority intervenes<\/h2>\n<p>The Dutch data protectors have been focusing on Windows 10 for some time now because of the collection of telemetry data (see the <a href=\"https:\/\/techcrunch.com\/2017\/10\/13\/microsofts-windows-10-breaches-privacy-law-says-dutch-dpa\/\" target=\"_blank\" rel=\"noopener noreferrer\">Techcrunch<\/a> article from October 2017). Now I came across a Reuter article about the following tweet, which deals with the topic again.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p dir=\"ltr\" lang=\"en\">\"Microsoft has complied with the agreements made,\" DPA said. \"However, the check also brought to light that Microsoft is remotely collecting other data from users. As a result, Microsoft is still potentially in breach of privacy rules.\" <a href=\"https:\/\/t.co\/yEXd5EIn9q\">https:\/\/t.co\/yEXd5EIn9q<\/a><\/p>\n<p>\u2014 Rayna \u00af\\_(\u30c4)_\/\u00af (@MaliciaRogue) <a href=\"https:\/\/twitter.com\/MaliciaRogue\/status\/1166318442737283072?ref_src=twsrc%5Etfw\">August 27, 2019<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>The Dutch Data Protection Agency (DPA) alleges that Microsoft still collects remote data from users of Windows Home and Windows Pro, possibly in violation of EU data protection legislation (GDPR).<\/p>\n<h2>Audit reveals irregularities<\/h2>\n<p>This year the Dutch DPA has taken an audit on Windows 10 again, after Microsoft was asked last year to improve its data protection. The auditors have found the practices , which probably is a violation of GDPR.<\/p>\n<blockquote><p>\"Microsoft is permitted to process personal data if consent has been given in the correct way,\" the watch guard writes. \"We've found that Microsoft collect diagnostic and non-diagnostic data. We'd like to know if it is necessary to collect the non-diagnostic data and if users are well informed about this.<\/p>\n<p>Does Microsoft collect more data than they need to (think about dataminimalization as a base principle of the GDPR). Those questions can only be answered after further examination.\"<\/p><\/blockquote>\n<h2>Irish data protection authority contacted<\/h2>\n<p>The Dutch regulator informed Reuters that it had passed on its findings to its counterpart in Ireland, where Microsoft has its headquarters. The Irish Data Protection Committee (DPC) confirmed that it had received the information from the Dutch regulators last month <a href=\"https:\/\/techcrunch.com\/2019\/08\/27\/microsofts-lead-eu-data-watchdog-is-looking-into-fresh-windows-10-privacy-concerns\/\" target=\"_blank\" rel=\"noopener noreferrer\">to TechCrunch<\/a>.<\/p>\n<blockquote><p>\"Since then the DPC has been liaising with the Dutch DPA to further this matter. The DPC has had preliminary engagement with Microsoft and, with the assistance of the Dutch authority, we will shortly be engaging further with Microsoft to seek substantive responses on the concerns raised.\"<\/p><\/blockquote>\n<p>Techchrunch has published <a href=\"https:\/\/techcrunch.com\/2019\/08\/27\/microsofts-lead-eu-data-watchdog-is-looking-into-fresh-windows-10-privacy-concerns\/\">here an extended statement from Microsoft<\/a>. This means that Microsoft is once again in the focus of data protection commissioners.\u00a0<a href=\"https:\/\/www.forbes.com\/sites\/daveywinder\/2019\/08\/28\/microsoft-confirms-windows-10-privacy-investigation-with-a-4-billion-sting\/#68453a5d7b1e\" target=\"_blank\" rel=\"noopener noreferrer\">This articles<\/a> from Forbes also covers that issue.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Microsoft has once again come into the focus of the European data protection watch guards with regard to Windows 10 privacy. The Dutch data protection authority (DPA) has accused Microsoft of remotely collecting user data of Windows 10 Home and &hellip; <a href=\"https:\/\/borncity.com\/win\/2019\/08\/30\/windows-10-once-again-facing-eu-gpdr-investigation\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[261,76],"class_list":["post-10937","post","type-post","status-publish","format-standard","hentry","category-windows","tag-privacy","tag-windows-10"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/10937","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=10937"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/10937\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=10937"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=10937"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=10937"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}