The information we collect from you will be used by Microsoft and its controlled subsidiaries and affiliates to enable the features you are using and provide the service(s) or carry out the transaction(s) you have requested or authorized. The information may also be used to analyze and improve Microsoft products and services.
Except as described in this statement, personal information you provide will not be transferred to third parties without your consent. We occasionally hire other companies to provide limited services on our behalf, such as packaging, sending and delivering purchases and other mailings, answering customer questions about products or services, processing event registration, or performing statistical analysis of our products or services. We will only provide those companies the personal information they need to deliver the service, and they are prohibited from using that information for any other purpose.
Microsoft may access or disclose information about you in order to: (a) comply with the law or respond to lawful requests or legal process; (b) protect the rights or property of Microsoft or our customers, including the enforcement of our agreements or policies governing your use of the product; or (c) act on a good faith belief that such access or disclosure is necessary to protect the personal safety of Microsoft employees, customers or the public.
Information that is collected by or sent to Microsoft by SQL Server may be stored and processed in the United States or any other country in which Microsoft or its affiliates, subsidiaries or service providers maintain facilities, and by using a Microsoft site or service, you consented to any such transfer of information outside of your country. Microsoft abides by the safe harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of data from the European Union.
Microsoft SQL Server contains Internet-enabled features that can collect and send information about your computer ("standard computer information") to Microsoft. Standard computer information typically includes information such as your IP address, operating system version, browser version, and regional and language settings. In some cases, standard computer information may also include hardware ID, which indicates the device manufacturer, device name, and version. If a particular feature or service sends information to Microsoft, standard computer information will be sent as well.
The privacy details for each SQL Server feature listed in this privacy statement describe what additional information is collected and how it is used.
Customer Experience Improvement Program
Individual Error Reports
Error and Usage Reporting
Microsoft SQL Server Books Online: Online Content Settings for Help
Using Bing Maps with SQL Server Reporting Services
What This Feature Does:
The Customer Experience Improvement Program (CEIP) feature of SQL Server Business Intelligence Development Studio and SQL Server Management Studio will collect information about your hardware configuration and how you use our software and services so that we can identify trends and usage patterns. This information helps improve the quality, reliability and performance of Microsoft software and services.
Information Collected, Processed or Transmitted:
The information CEIP collects includes the type and number of errors you encounter, software and hardware performance, and the speed of services. We do not collect your name, address or other contact information.
This feature generates a Globally Unique Identifier (GUID) that is stored on your computer to uniquely identify it. The GUID is a randomly generated number; it does not contain any personal information and will not be used to identify you. CEIP uses the GUID to distinguish how widespread the feedback we receive is and how to prioritize it. For example, this number allows Microsoft to distinguish between one customer having an error 100 times and 100 customers having the same error once. The GUID is persistent.
Use of Information:
The information collected is used to help improve Microsoft’s products. Microsoft employees, contractors and vendors who have a business need to use the data are provided access as necessary.
You will be given an opportunity to participate in CEIP during the SQL Server installation. For pre-release versions of SQL Server, CEIP is turned on by default. You can later change your installation choice by following the instructions below.
To change your CEIP settings:
1. SQL Server Management Studio, or SQL Server Business Intelligence Development Studio, and open a new or existing Analysis Services, or Integration Services project.
2. From the Help menu of SQL Server Management Studio, select Microsoft SQL Server Customer Feedback Options, or from the Help menu of SQL Server Management Studio, or SQL Server Business Intelligence Development Studio, select Microsoft SQL Server Customer Feedback Settings.
3. To turn CEIP off, click No, I don't wish to participate. To turn CEIP on, click Yes, I am willing to participate.
4. Click OK.
Enterprise customers may construct Group Policy to opt in or out of CEIP by setting a registry-based policy. The relevant registry key and settings are as follows:
Key = HKEY_CURRENT_USER\Software\Microsoft\Microsoft SQL Server\100
RegEntry name = CustomerFeedback
Entry type DWORD:
Incorrectly editing the registry may severely damage your system. Before making changes to the registry, you should back up any valued data on the computer. You can also use the Last Known Good Configuration startup option if you encounter problems after manual changes have been applied.
For more information about the information collected, processed, or transmitted by CEIP, see the Privacy Statement for the Microsoft Customer Experience Improvement Program.
Individual error reports allow you to report problems you may be having with SQL Server and all of its component products that have user interfaces. Error reporting for components and services that do not have user interfaces (such as SQL Server Database Engine, SQL Agent, Analysis Services, Reporting Services, Notification Services, SQL Replication, the Database Tuning advisor component, SQL Browser Service and SQL Writer) is handled by the Error and Usage Reporting Tool, described below.
Information Collected, Processed, or Transmitted:
Individual Error Reports collect standard computer information, which is not used to identify you. They do not intentionally collect name, address, email address, computer name, or any information that will be used to identify you or contact you. It is possible that such information may be captured in memory or in the data collected from open files, but Microsoft does not use it to identify you.
In rare cases, such as problems that are especially difficult to solve, Microsoft may request additional data, including sections of memory (which may include memory shared by any or all applications running at the time the problem occurred), some registry settings, and one or more files from your computer. Your current documents may also be included. When additional data is requested, you can review the data and choose whether or not to send it.
In certain cases, you may be asked to answer an optional survey after sending an error report. If you send an error report without sending survey information, none of the information in your error report is used to identify you. If you choose to provide a phone number or e-mail address then we may contact you to ask for additional data that will help us solve a problem. In some cases you may also be presented with an opportunity to track your error report. If you choose to track an error your report will be associated with your e-mail address.
We use the data for diagnosing and solving customer problems and to improve this and other Microsoft software and services.
Each time an error occurs in a SQL Server component with a user interface, a report is generated and you are asked if you want to send this report to Microsoft. You will have an opportunity to view the information contained in the error report before choosing whether or not to send the report.
Enterprise customers can use Group Policy to configure how Error Reporting behaves on their computers. Configuration options include the ability to completely turn off Error Reporting. If you are administrator, and wish to configure Group Policy for Error Reporting, see Group Policy Planning and Deployment Guide.
For more details on what information is collected and how it is used, see the Privacy Statement for the Microsoft Error Reporting Service.
The Error Reporting feature gives you the opportunity to automatically send error reports to Microsoft for SQL Server components and servers that do not have a user interface and run in the background, such as SQL Server Database Engine, SQL Agent, Analysis Services, Reporting Services, Notification Services, SQL Replication, the Database Tuning advisor component, SQL Browser Service and SQL Writer (“Background Services”). The Error Reporting feature, which is on by default for pre-release versions, allows you to automatically report problems you may be having with Background Services to Microsoft and to receive information that may help you get around or solve such problems.
The Usage Reporting Feature gives you the opportunity to automatically send usage information to Microsoft. If you consent, the Usage Reporting feature will collect and send to Microsoft information about your hardware configuration and which SQL Server features are being used on that hardware, so we can identify trends and usage patterns.
The Error Reporting feature collects the same types of information as Individual Error Reports collects. In addition, the Error Reporting feature of SQL Server collects extensive information specific to usage at the time of the error including, for example: machine characteristics (CPU speed, number of processors, etc.), callstack of faulting threads (or all threads for certain types of error), execution plans and other execution data, and information about open files. It may also collect historic information about the behavior of the operating system and SQL Server, and for certain error types, data page contents. It is possible that personally identifiable information may be captured in memory or in the data collected from open files, but Microsoft does not use it to identify you. Unlike Individual Error Reports described above, you will not have the opportunity to review the information in the reports generated by the Error Reporting feature before they are sent.
The Usage Reporting feature collects information about your hardware configuration, which features are installed and used by each of the SQL Server products installed on that hardware and how those features perform. We do not collect your name, address or other contact information. This feature also generates a GUID that is stored on your computer to uniquely identify it. The GUID is a randomly generated number; it does not contain any personal information and will not be used to identify you.
The data sent by the Error and Usage Reporting is used to track down and solve problems that users are experiencing and to help improve Microsoft’s products. The usage reports are used by the Customer Experience Improvement Program, which helps us make better software. By participating in this program, you are directly influencing how our software is designed.
For pre-release versions of SQL Server, the Error Reporting feature is turned on by default. During setup of attended installations, you will be offered the opportunity to opt out of this feature. This opt out option is not presented for unattended installations, so you will need to turn this feature off using the tool described below if you use an unattended installation and you do not wish to use this feature. To later turn these features on or off, use the Error and Usage Reporting Tool, which is available by clicking on the Start menu, Programs, SQL Server 2008 R2, Configuration Tools, SQL Server Error and Usage Reporting.
Enterprise customers can use Group Policy to configure how Error Reporting behaves on their computers. Configuration options include the ability to completely turn off Error Reporting. If you are administrator, and wish to configure Group Policy for Error Reporting, see Group Policy Planning and Deployment Guide
Some error reports may be sent to Microsoft even if you choose not to use the SQL Server Error Reporting feature if you have configured Windows to use Microsoft Error Reporting.
The Online Content feature enables you to query MSDN Online web site automatically when performing a search. In addition, you can get information from MSDN Online in response to pressing the F1 key.
In order to return relevant results, the Online Content feature transmits to MSDN Online information including standard computer information, the search text string you entered or the keywords associated with the feature you pressed F1 on and the sources to be searched (such as MSDN Online).
The information is used to respond to the search query or F1 key press. Microsoft also uses this information to develop new content and revise existing content.
In Microsoft Help Viewer 1.1, you can specify whether you want to view local sources or online sources in your Help experience. Use Help Library Manager to toggle between local and online settings.
For information about Microsoft Help Viewer 1.1, see Microsoft Help System 1.1 Documentation.
This disclosure only covers interactions with MSDN Online; how other designated Web sites collect and use search information depends on the particular site selected. For more information about MSDN Online’s privacy practices, see Microsoft Online Privacy Statement.
SQL Server Reporting Services allows you to build reports that integrate with Bing Maps. To enable this feature, certain information is sent from your server to the Bing Maps service.
SQL Server Reporting Services may send some of your data values that will be visualized on a map to Bing Maps services to be geocoded. This would occur when you run a report that uses the Bing Maps feature to draw the data points in the appropriate geo-location on the map.
Microsoft uses the information to operate and improve Bing Maps and other Microsoft sites and services. For more information, see the Bing Privacy Statement.
By default, a unique identifier is not sent with requests to Bing Maps. See your SQL Server documentation to learn how you can add your Bing Maps ID to your SQL Server configuration.
Learn more about
How to Contact Us
Microsoft Ireland Operations Limited is our data protection representative for the European Economic Area and Switzerland. The data protection officer of Microsoft Ireland Operations Limited can be reached at the following address:
Microsoft Ireland Operations, Ltd. Attn: Data Protection Carmenhall Road Sandyford, Dublin 18, Ireland
Microsoft Ireland Operations, Ltd. Attn: Data Protection Carmenhall Road Sandyford, Dublin 18, Ireland
Below you will find additional privacy information you may find important. Much of this describes practices that are common across the industry, but we want make sure you are aware of them. Please keep in mind that this information is not a complete description of our practices - this is all in addition to the other, more specific information contained elsewhere in this privacy statement.
On this page:
Protecting the Security of Personal Information
Microsoft is committed to protecting the security of your personal information. We use a variety of security technologies and procedures to help protect your personal information from unauthorized access, use or disclosure. For example, we store the personal information you provide on computer systems that have limited access and are in controlled facilities. When we transmit highly confidential information (such as a credit card number or password) over the Internet, we protect it through the use of encryption, such as the Secure Socket Layer (SSL) protocol.
If a password is used to help protect your accounts and personal information, it is your responsibility to keep your password confidential. Do not share it. If you are sharing a computer, you should always log out before leaving a site or service to protect access to your information from subsequent users.
Where Information is Stored and Processed
Personal information collected on Microsoft sites and services may be stored and processed in the United States or any other country where Microsoft or its affiliates, subsidiaries or service providers maintain facilities. Microsoft abides by the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of data from the European Economic Area and Switzerland. To learn more about the Safe Harbor program, and to view our certification, please visit http://www.export.gov/safeharbor/.
Microsoft may retain your personal information for a variety of reasons, such as to comply with our legal obligations, resolve disputes, enforce our agreements, and as long as necessary to provide services. To learn how to access your personal information, visit Accessing Your Information.
Changes to Our Privacy Statements
We will occasionally update our privacy statements to reflect customer feedback and changes in our services. When we post changes to a statement, we will revise the "last updated" date at the top of the statement. If there are material changes to the statement or in how Microsoft will use your personal information, we will notify you either by prominently posting a notice of such changes before they take effect or by directly sending you a notification. We encourage you to periodically review the privacy statements for the products and services you use to learn how Microsoft is protecting your information.
Privacy at Microsoft
Controlling your online privacy
Security at Home