Last Updated: september 2014
    Microsoft Dynamics CRM Online Privacy Statement pspDynamicsCRMOnlineIntroductionModule

    Microsoft is committed to protecting your privacy. This privacy statement applies to the data collected by Microsoft through your use and administration of the Microsoft Dynamics CRM Online (the "Service(s)," as further defined below); it does not apply to other online or offline Microsoft sites, products, or services.

    Notice to Users:  This privacy statement is written for the organization or company (our "customers") that contracts with Microsoft for the Services.  All references to "you" or "your" in this privacy statement are to our customers.  Users of the Services should direct privacy-related inquiries to the organization or company that provides access to the Services.

    The Service  is a Microsoft hosted application for customer relationship management focused on sales, marketing, and service sectors. Please note that the Services may enable access to third-party services, such as Inside View or other Microsoft products and services, such as Microsoft Dynamics CRM for tablets and phones, Microsoft Dynamics Marketing, Microsoft Social Listening, Bing Maps or Yammer, whose privacy practices may differ from the Services. Your use of such services, and any information you provide to them, is governed by their service specific privacy statements. We encourage you to review these other privacy statements.

    Customer Data Customer DatapspEnterpriseCloudPrivacyStatementTemplateCustomerDataModule
    Summary
    We will use Customer Data (as defined in your agreement(s) with Microsoft) only to provide you the services for which you contract.
    Full text

    Customer Data is all data, including all text, sound, or image files and software that you provide, or are provided on your behalf, to Microsoft through your use of the Services. Customer Data does not include Administrator Data, Payment Data, or Support Data, as defined below.

    As described in your agreement(s), we only use Customer Data to provide the Services.  This may include troubleshooting aimed at preventing, detecting and repairing problems affecting the operation of the Services and the improvement of features that involve the detection of, and protection against, emerging and evolving threats to the user (such as malware or spam).

    Administrator Data Administrator DatapspEnterpriseCloudPrivacyStatementTemplateAdministratorDataModule
    Summary

     Administrator Data is information about administrators (including account contact and subscription administrators) provided during sign-up, purchase, or administration of the Services. This may include name, address, phone number, and email address, whether collected at initial purchase or later during management of the Services.

    Full text

    Administrator Data is information about administrators (including account contact and subscription administrators) you provide during sign-up, purchase, or administration of the Services. This may include name, address, phone number, and email address, whether collected at initial purchase or later during management of the Services.

    Administrator Data is used to complete the transactions you request, administer your account, improve the Services, as well as to detect and prevent fraud.  In limited circumstances, we may share Administrator Data with third parties for purposes of fraud prevention.

    We may contact you to provide information about new subscriptions, billing and other important updates about the Services, including security or other technical matters.  We may also contact you regarding third-party inquiries we receive regarding your use of the Services, as described in your agreement(s).  You will not be able to unsubscribe from these communications. Subject to your contact preferences, we may also contact you regarding information and offers about other Microsoft products and services, or to request your feedback about the Services.

    To manage your contact preferences or update your information, please visit your personal settings page in the Services. 

    Payment Data Payments DatapspEnterpriseCloudPrivacyStatementTemplatePaymentsDataModule
    Summary
    When you make online purchases, you will be asked to provide information, which may include your payment instrument number (e.g., credit card, PayPal), your name and billing address, and the security code associated with your payment instrument (e.g., the CSV) and other financial data (“Payment Information”). This section describes the collection and use of Payment Information.
    Full text

    Payment Data is the information that you provide when making an online purchase through the Services. This may include your name, billing address, your payment instrument number (e.g., credit card), the security code associated with your payment instrument (e.g., the CSV) and other financial data.

    We use Payment Data to complete transactions, as well as to detect and prevent fraud.  In support of these uses, Microsoft may share your Payment Data with banks and other entities that process payment transactions or other financial services, for fraud prevention and credit risk reduction purposes. 

    When you provide Payment Data while authenticated, we will store that data to help you complete future transactions.  We do not, however, retain the security code associated with your Payment instrument in this manner.

    To remove or modify Payment Data, please contact Customer Support.  After you close your account or remove Payment Data, however, Microsoft may retain your Payment Data for as long as reasonably necessary to complete your existing transactions, to comply with Microsoft’s legal and reporting requirements, and to detect and prevent fraud. 

    Support Data Support DatapspEnterpriseCloudPrivacyStatementTemplateSupportDataModule
    Summary
    We use Support Data in the same way as we use your information, as described in this privacy statement. Additionally, we use it to resolve your support incident and for training purposes.
    Full text

    Support Data is the information we collect when you submit a support request or run an automated troubleshooter, including information about hardware, software, and other details related to the support incident, such as: contact or authentication information, chat session personalization, information about the condition of the machine and the application when the fault occurred and during diagnostics, system and registry data about software installations and hardware configurations, and error-tracking files.

    Support may be provided through phone, e-mail, or online chat. We may use Remote Access (RA), with your permission, to temporarily navigate your machine. Phone conversations, online chat sessions, or Remote Access sessions with support professionals may be recorded and/or monitored. For RA, you may also access the recording after your session.  For Online Chat or RA, you may end a session at any time of your choosing. We use Support Data in the same way as we use your information, as described in this privacy statement. Additionally, we use it to resolve your support incident and for training purposes. 

    Following a support incident, we may send you a survey about your experience and offerings. You must opt-out of support surveys separately from other communications provided by Microsoft, by contacting Support or through the e-mail footer. 

    To review and edit your personal information collected through our support services, and for any other inquiries regarding our support services, please contact us by using our Web form. Some business customers may purchase enhanced support offerings (e.g. Premier etc.). These offerings are covered by their own contract terms and notices.

    Cookies for Enterprise Services CookiespspDynamicsCRMOnlineCookiesModule
    Summary
    Learn more about our use of Cookies in this section.
    Full text

    Microsoft uses cookies and similar technologies to collect information about users’ interactions with the Services.  This section describes the types of Information we collect through these technologies and describe how it is used.

    The Services use "cookies," small text files placed on a device’s hard disk by a web server.  Most web browsers automatically accept cookies, however, you have the option of modifying your browser settings to block or limit the use of cookies.  The Services may use cookies and similar technologies, such as web beacons, for the following purposes:

    • Storing users’ preferences and settings.
    • Sign-in, authentication, and fraud detection.




    Description

    Choice

    Cookies for Sign In and Authentication

    We use session cookies to allow users to move from page to page without having to sign in again on each page. At the user’s direction, we may use cookies to store credentials to facilitate authentication for future sessions.

    Session cookies are essential to operate the Services, there is no option to opt out of these cookies. Sign In cookies are stored only at the user’s request.

    Cookies for Storing preferences and settings

    We may use cookies to enable and personalize users’ interactions with the Services.

    To learn how to manage cookies using your browser settings click here. Users opting out of cookies may impact use of the Services.  

    Fraud Prevention & Security

    We may collect users’ Internet Protocol (“IP”) addresses for fraud prevention and the detection of malicious activity. For example, we may use IP addresses to monitor the regions from which users access the Services.  

    Users may not opt of the collection of IP Addresses for these purposes.

    Sharing Your Information Sharing Your InformationpspEnterpriseCloudPrivacyStatementTemplateSharingYourInformationModule
    Summary

    Except as described in this privacy statement, we won't disclose your information to a third party without your consent. Learn more in this section about when we may disclose information.

    Full text

    We will not disclose Customer Data, Administrator Data, Payment Data or Support Data ("your information") outside of Microsoft or its controlled subsidiaries and affiliates except as you direct, as described in your agreement(s) or as described in this privacy statement or as required by law.

    • We occasionally contract with other companies to provide services (such as customer support) on our behalf.  We may provide these companies with access to your information where necessary for their engagement. These companies are required to maintain the confidentiality of your information and are prohibited from using it for any purpose other than that for which they are engaged by Microsoft.
    • We will not disclose Customer Data to a third party (including law enforcement, other government entity, or civil litigant; excluding our subcontractors) except as you direct or unless required by law.  Should a third party contact Microsoft with a request for Customer Data, we will attempt to redirect the third party to request the data directly from you.  As part of that process, we may provide your contact information to the third party.  If compelled to disclose Customer Data to a third party, we will use commercially reasonable efforts to notify you in advance of a disclosure unless legally prohibited. 
    • Microsoft may share Administrator Data or Payment Data with third parties for purposes of fraud prevention or to process payment transactions, as further described in this statement.
    • The Services may enable you to purchase, subscribe to, or use services, software, and content from companies other than Microsoft ("Third Party Offerings"). If you choose to purchase, subscribe to, or use a Third Party Offering, we may provide the third party with your Administrator Data to enable the third party to provide its offering to you (and with your consent, send you promotional communications). That data and your use of a Third Party Offering will be governed by the applicable third party privacy statement(s) and policies.
    • We will not substantively respond to data protection and privacy requests from your users without your prior written consent, unless required by applicable law.
    • For U.S. educational institutions only:  Upon receipt of a judicial order or lawfully issued subpoena requiring the disclosure of personally identifiable information from education records in its possession, we will attempt to redirect the request to you. If compelled to disclose personally identifiable information from education records to a third party, we will use commercially reasonable efforts to notify you in advance of a disclosure unless legally prohibited. You understand we may have limited contact information for students and students' parents. Consequently, you will convey notification on our behalf to the student End User (or, with respect to a student under 18 years of age and not in attendance at a postsecondary institution, to the student's parent) of such an order or subpoena as required under applicable law.
    Security SecuritypspDynamicsCRMOnlineSecurityModule
    Summary

    For more information about the security of the Services, please visit Trust Center.




    Full text
    Other Information Other InformationpspDynamicsCRMOnlineOtherInformationModule
    Summary

    Learn More about:

    • Data Location
    • Changes to this Privacy Statement
    • How to Contact Us
    Full text

    Trial Period
    Services trials are provided for the purpose of testing the Services before purchase. Microsoft may temporarily retain your information collected during a Services trial after the end of the trial period to improve your customer experience in the event that you later decide to purchase the Services. However, your information may be deleted by the Services at any time after the end of the Services trial period.

    Partners
    If you designate a Microsoft partner (e.g., by trying or purchasing the Services in response to a partner request or quote, or by designating a partner to assist in the use or administration of the Services), Microsoft will make your information available to the partner as you direct.

    Data Location
    Your Services’ data may be transferred to, stored and processed in the United States or any other country where Microsoft or its affiliates, subsidiaries or service providers maintain facilities. Microsoft abides by the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of data from the European Economic Area, and Switzerland. To learn more about the Safe Harbor program and to view our certification, please visit http://www.export.gov/safeharbor/.

    Changes to this Privacy Statement
    We will occasionally update this privacy statement to reflect customer feedback and changes in our Services. When we post changes to this statement, we will revise the "last updated" date at the top of the statement. If there are material changes to this statement or in how Microsoft will use your information, we will notify you by either posting a notice of such changes before they take effect, or by direct notification. We encourage you to periodically review this privacy statement to learn how Microsoft is protecting your information.

    How to Contact Us

    Microsoft welcomes your comments. If you have questions about Microsoft’s privacy and security commitments, or if you have other technical or customer support questions, please contact Microsoft at http://support.microsoft.com/contactus/.

    Microsoft Dynamics CRM Privacy Managers

    Microsoft Corporation

    Microsoft Way

    Redmond, Washington, 98052-6399 USA

    Microsoft Ireland Operations Limited is our data protection representative for the European Economic Area and Switzerland. The data protection officer of Microsoft Ireland Operations Limited can be reached at the following address:

    Microsoft Ireland Operations, Ltd.

    Attn: Data Protection

    Carmenhall Road

    Sandyford, Dublin 18, Ireland