Privacy Statement Templates
Each Web site requires a link to a Microsoft privacy statement, even if IP address and other standard information sent by a browser is the only information collected.
The footer of each page of a vendor-hosted site must include:
A link to your Microsoft privacy statement labeled "Privacy Statement"
The Microsoft copyright notice: © [year] Microsoft Corporation. All rights reserved.
The following notice: This site is hosted for Microsoft by [vendor name].
P3P Privacy Statement
Vendor-hosted sites that link to Microsoft.com sites must offer a Platform for Privacy Preferences (P3P) statement.
Collection of Personal Information
If the site you are hosting collects personal information, the site must be reviewed by the Microsoft privacy expert who supports your Microsoft client. Privacy requirements include, but are not limited to, the following:
Use Secure Sockets Layer (SSL) on pages that collect personal information.
Indicate which fields are required.
Limit required fields to what is necessary to fulfill the primary purpose.
Collect contact preferences for any secondary use of personal information.
Import personal information into Microsoft systems, as applicable, within 10 business days (5 for Australia).
Request a review from your business privacy contact if the Web site is intended for children under 13 or may be attractive to children under 13.
Request a review from your business privacy contact if sensitive information such as an individual's race, ethnic origin, political opinions, religious beliefs, trade union membership, physical or mental health, sexual life, financial information, or government-issued IDs is collected.
No vendor branding or links back to vendor's own site are permitted.
Provide a link to the site’s vendor-hosted privacy statement in the footer of all pages of the website.
At all points of data collection provide an additional link to the site’s vendor-hosted privacy statement.