Last Updated: May 2015
    SQL Server Privacy Statement

    pspSQLServerIntroductionModule

    At Microsoft, we're working hard to protect your privacy, while delivering products that bring you the performance, power and convenience you desire in your personal computing. This privacy statement explains many of the data collection and use practices for Microsoft SQL Server 2016 releases and any other products and services that display or link to this notice. This privacy statement focuses on features that communicate with the Internet.

    Collection and Use of Your Information Collection of Your InformationpspSQLServer2014CollectionofYourInformationModule
    Summary
    The information we collect from you will be used by Microsoft and its controlled subsidiaries and affiliates to enable the features you are using and provide the service(s) or carry out the transaction(s) you have requested or authorized. The information may also be used to analyze and improve Microsoft products and services.
    Full text

    The information we collect from you will be used by Microsoft and its controlled subsidiaries and affiliates to enable the features you are using and provide the service(s) or carry out the transaction(s) you have requested or authorized. The information may also be used to analyze and improve Microsoft products and services.

    Except as described in this statement, personal information you provide will not be transferred to third parties without your consent. We occasionally hire other companies to provide limited services on our behalf, such as packaging, sending and delivering purchases and other mailings, answering customer questions about products or services, processing event registration, or performing statistical analysis of our products or services. We will only provide those companies the personal information they need to deliver the service, and they are prohibited from using that information for any other purpose.

    Microsoft may access or disclose information about you in order to: (a) comply with the law or respond to lawful requests or legal process; (b) protect the rights or property of Microsoft or our customers, including the enforcement of our agreements or policies governing your use of the product; or (c) act on a good faith belief that such access or disclosure is necessary to protect the personal safety of Microsoft employees, customers or the public.

    Information that is collected by or sent to Microsoft by SQL Server may be stored and processed in the United States or any other country in which Microsoft or its affiliates, subsidiaries or service providers maintain facilities, and by using a Microsoft site or service, you consented to any such transfer of information outside of your country. Microsoft abides by the safe harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of data from the European Union.

    Collection and Use of Information about Your Computer Use of Computer InformationpspSQLServer2014PowerQueryforExcelModule
    Summary

    Microsoft SQL Server contains Internet-enabled features that can collect and send information about your computer or device ("standard computer information") to Microsoft. Standard computer information typically includes information such as your IP address, operating system version, browser version, and regional and language settings. In some cases, standard computer information may also include hardware ID, which indicates the device manufacturer, device name, and version. If a particular feature or service sends information to Microsoft, standard computer information will be sent as well.

    The privacy details for each SQL Server feature listed in this privacy statement describe what additional information is collected and how it is used.

    Full text
    Specific Features in SQL Server 2016 Specific FeaturespspSQLServerSpecificFeaturesModule
    Summary

    Telemetry

    Setup Install Success

    Individual Error Reports

    Error and Usage Reporting

    Microsoft SQL Server Books Online: Online Content Settings for Help

    Using Bing Maps with SQL Server Reporting Services

    Microsoft SQL Server Reference Data Services



    Full text

    Telemetry

    What This Feature Does:

    When included with SQL Server, the telemetry collection feature of SQL Server Business Intelligence Development Studio and SQL Server Management Studio will collect information about your hardware configuration and how you use our software and services so that we can identify trends and usage patterns. This information helps improve the quality, reliability and performance of Microsoft software and services.

    Information Collected, Processed or Transmitted:

    The information collected as telemetry includes the type and number of errors you encounter, software and hardware performance, and the speed of services. We do not collect your name, address or other contact information.

    This feature generates a Globally Unique Identifier (GUID) that is stored on your computer to uniquely identify it. The GUID is a randomly generated number; it does not contain any personal information and will not be used to identify you. The telemetry implementation uses the GUID to distinguish how widespread the feedback we receive is and how to prioritize it. For example, this number allows Microsoft to distinguish between one customer having an error 100 times and 100 customers having the same error once. The GUID is persistent.

    Use of Information:

    The information collected is used to help improve Microsoft's products. Microsoft employees, contractors and vendors who have a business need to use the data are provided access as necessary.

    Choice/Control

    You will be given an opportunity to participate in the collection of telemetry during the SQL Server installation. For pre-release versions of SQL Server, telemetry collection is turned on by default. You can later change your installation choice by following the instructions below.

    To change your telemetry collection settings:

    1. Start SQL Server Management Studio, or SQL Server Business Intelligence Development Studio, and open a new or existing Analysis Services, or Data Transformation Services project.

    2. From the Help menu of SQL Server Management Studio, select Microsoft SQL Server Customer Feedback Options, or from the Help menu of SQL Server Business Intelligence Development Studio, select Microsoft SQL Server Customer Feedback Settings.

    3. To turn telemetry collection off, click No, I don't wish to participate. To turn telemetry collection on, click Yes, I am willing to participate.

    4. Click OK.

    Important Information:

    Enterprise customers may construct Group Policy to opt in or out of telemetry collection by setting a registry-based policy. The relevant registry key and settings are as follows:

    Key = HKEY_CURRENT_USER\Software\Microsoft\Microsoft SQL Server\130

    RegEntry name = CustomerFeedback

    Entry type DWORD:

    • 0 is opt out
    • 1 is opt in

    Caution:

    Incorrectly editing the registry may severely damage your system. Before making changes to the registry, you should back up any valued data on the computer. You can also use the Last Known Good Configuration startup option if you encounter problems after manual changes have been applied.

    Setup Install Success

    What This Feature Does:

    This feature reports back to Microsoft if the installation program has successfully completed or not.  This is a one-time data transmission, which is not used to identify you.

     Use of Information:

    The information collected is used to help improve Microsoft's products. Microsoft employees, contractors and vendors who have a business need to use the data are provided access as necessary.

    Choice/Control

    You will not be able to opt out of this one-time data collection.

    Individual Error Reports

    What This Feature Does:

    Individual error reports allow you to report problems you may be having with SQL Server and all of its component products that have user interfaces. Error reporting for components and services that do not have user interfaces (such as SQL Server Database Engine, SQL Agent, Analysis Services, Reporting Services, Notification Services, SQL Replication, the Database Tuning advisor component, SQL Browser Service and SQL Writer) is handled by the Error and Usage Reporting Tool, described below.

    Information Collected, Processed, or Transmitted:

    Individual Error Reports collect standard computer information, which is not used to identify you. They do not intentionally collect name, address, email address, computer name, or any information that will be used to identify you or contact you. It is possible that such information may be captured in memory or in the data collected from open files, but Microsoft does not use it to identify you.

    In rare cases, such as problems that are especially difficult to solve, Microsoft may request additional data, including sections of memory (which may include memory shared by any or all applications running at the time the problem occurred), some registry settings, and one or more files from your computer. Your current documents may also be included. When additional data is requested, you can review the data and choose whether or not to send it.

    In certain cases, you may be asked to answer an optional survey after sending an error report. If you send an error report without sending survey information, none of the information in your error report is used to identify you. If you choose to provide a phone number or e-mail address then we may contact you to ask for additional data that will help us solve a problem. In some cases you may also be presented with an opportunity to track your error report. If you choose to track an error your report will be associated with your e-mail address.

    Use of Information:

    We use the data for diagnosing and solving customer problems and to improve this and other Microsoft software and services.

    Choice/Control:

    Each time an error occurs in a SQL Server component with a user interface, a report is generated and you are asked if you want to send this report to Microsoft. You will have an opportunity to view the information contained in the error report before choosing whether or not to send the report.

    Enterprise customers can use Group Policy to configure how Error Reporting behaves on their computers. Configuration options include the ability to completely turn off Error Reporting. If you are administrator, and wish to configure Group Policy for Error Reporting, see Group Policy Planning and Deployment Guide.

    Important Information:

    For more details on what information is collected and how it is used, see the Privacy Statement for the Microsoft Error Reporting Service.

    Error and Usage Reporting

    What This Feature Does:

    The Error Reporting feature gives you the opportunity to automatically send error reports to Microsoft for SQL Server components and servers that do not have a user interface and run in the background, such as SQL Server Database Engine, SQL Agent, Analysis Services, Reporting Services, Notification Services, SQL Replication, the Database Tuning advisor component, SQL Browser Service and SQL Writer ("Background Services"). The Error Reporting feature, which is on by default for pre-release versions, allows you to automatically report problems you may be having with Background Services to Microsoft and to receive information that may help you get around or solve such problems.

    The Usage Reporting Feature gives you the opportunity to automatically send usage information to Microsoft. If you consent, the Usage Reporting feature will collect and send to Microsoft information about your hardware configuration and which SQL Server features are being used on that hardware, so we can identify trends and usage patterns.

    Information Collected, Processed, or Transmitted:

    The Error Reporting feature collects the same types of information as Individual Error Reports collects. In addition, the Error Reporting feature of SQL Server collects extensive information specific to usage at the time of the error including, for example: machine characteristics (CPU speed, number of processors, etc.), callstack of faulting threads (or all threads for certain types of error), execution plans and other execution data, and information about open files. It may also collect historic information about the behavior of the operating system and SQL Server, and for certain error types, data page contents. It is possible that personally identifiable information may be captured in memory or in the data collected from open files, but Microsoft does not use it to identify you. Unlike Individual Error Reports described above, you will not have the opportunity to review the information in the reports generated by the Error Reporting feature before they are sent.

    The Usage Reporting feature collects information about your hardware configuration, which features are installed and used by each of the SQL Server products installed on that hardware and how those features perform. We do not collect your name, address or other contact information. This feature also generates a GUID that is stored on your computer to uniquely identify it. The GUID is a randomly generated number; it does not contain any personal information and will not be used to identify you.

    Use of Information:

    The data sent by the Error and Usage Reporting is used to track down and solve problems that users are experiencing and to help improve Microsoft's products. The usage reports are used by the Customer Experience Improvement Program, which helps us make better software. By participating in this program, you are directly influencing how our software is designed.

    Choice/Control:

    For pre-release versions of SQL Server, the Error Reporting feature is turned on by default. During setup of attended installations, you will be offered the opportunity to opt out of this feature. This opt out option is not presented for unattended installations, so you will need to turn this feature off using the tool described below if you use an unattended installation and you do not wish to use this feature. To later turn these features on or off, use the Error and Usage Reporting Tool, which is available by clicking on the Start menu, Programs, SQL Server 2012, Configuration Tools, SQL Server Error and Usage Reporting.

    Enterprise customers can use Group Policy to configure how Error Reporting behaves on their computers. Configuration options include the ability to completely turn off Error Reporting. If you are administrator, and wish to configure Group Policy for Error Reporting, see Group Policy Planning and Deployment Guide

    Important Information:

    Some error reports may be sent to Microsoft even if you choose not to use the SQL Server Error Reporting feature if you have configured Windows to use Microsoft Error Reporting.

    Microsoft SQL Server Books Online: Online Content Settings for Help

    What This Feature Does:

    The Online Content feature enables you to query MSDN Online web site automatically when performing a search. In addition, you can get information from MSDN Online in response to pressing the F1 key.

    Information Collected, Processed or Transmitted:

    In order to return relevant results, the Online Content feature transmits to MSDN Online information including standard computer information, the search text string you entered or the keywords associated with the feature you pressed F1 on and the sources to be searched (such as MSDN Online).

    Use of Information:

    The information is used to respond to the search query or F1 key press. Microsoft also uses this information to develop new content and revise existing content.

    Choice/Control:

    In Microsoft Help Viewer 1.1, you can specify whether you want to view local sources or online sources in your Help experience. Use Help Library Manager to toggle between local and online settings.

    • Local. The local versions of topics from Books Online will appear when you select Local in Help Library Manager.
    • Online. The online versions of topics from Books Online will appear when you select Online in Help Library Manager.

    For information about Microsoft Help Viewer 1.1, see Microsoft Help System 1.1 Documentation.

    Important Information:

    This disclosure only covers interactions with MSDN Online; how other designated Web sites collect and use search information depends on the particular site selected. For more information about MSDN Online's privacy practices, see Microsoft Online Privacy Statement.

    Using Bing Maps with SQL Server Reporting Services

    What This Feature Does:

    SQL Server Reporting Services allows you to build reports that integrate with Bing Maps. To enable this feature, certain information is sent from your server to the Bing Maps service.

    Information Collected, Processed or Transmitted:

    If you configure SQL Server with your Bing Maps ID, that ID will be sent to Bing Maps along with your requests for data each time you run a report that uses the Bing Maps feature.

    Use of Information:

    Microsoft uses the information to operate and improve Bing Maps and other Microsoft sites and services. For more information, see the Bing Privacy Statement.

    Choice/Control:

    By default, a unique identifier is not sent with requests to Bing Maps. See your SQL Server documentation to learn how you can add your Bing Maps ID to your SQL Server configuration.

    Microsoft SQL Server Reference Data Services

    What This Feature Does:

    The Reference Data Service feature in Data Quality Services (DQS) enables users to cleanse their data based on third-party reference data services. The Reference Data Service feature is used to standardize, correct, or enrich your organization's data during the cleansing process. The Reference Data Service feature enables you to associate a DQS domain to a third-party reference data service. You can then send your data to the associated third-party service to validate data against the reference data.

    Information Collected, Processed or Transmitted:

    No information is sent to Microsoft unless you have separately selected Microsoft Windows Azure™ Marketplace DataMarket as one of the third-party reference data service providers. The data is sent directly to the third-party reference data service provider for data cleansing.

    Use of Information:

    The data is sent to the third-party reference data for cleansing, and the cleansed data is returned to the customer. Use of the data by the data service provider is subject to any terms and conditions between you and the provider.

    Choice/Control:

    To enable this feature in DQS, you must map your data source to a third-party reference data service. In order to use Microsoft Windows Azure™ Marketplace DataMarket RDS providers you must create an account with DataMarket, and subscribe to a third-party reference data service.

    To disable this feature in DQS, you must dissociate your data source to a third-party reference data service.

    SQL Server Tools SQL Server ToolspspSQLServerSQLServerToolsModule
    Summary
    Some features of SQL Server may require, or may be enhanced by, the installation of additional software ("Tools"), e.g. SQL Server 2016 Management Studio, SQL Server 2016 Upgrade Advisor, SQL Server 2016 Reporting Services Configuration Manager, and SQL Server Data Tools for SQL Server 2016. This section of the SQL Server Privacy Statement governs your use of those Tools that do not have their own privacy statements. At your or your end user's direction, the Tools transmit data from a device or appliance to or from Microsoft.
    Full text

    Some features of SQL Server may require, or may be enhanced by, the installation of additional software ("Tools"), e.g. SQL Server 2016 Management Studio, SQL Server 2016 Upgrade Advisor, SQL Server 2016 Reporting Services Configuration Manager, and SQL Server Data Tools for SQL Server 2016. This section of the SQL Server Privacy Statement governs your use of those Tools that do not have their own privacy statements. At your or your end user's direction, the Tools transmit data from a device or appliance to or from Microsoft.
     
    The Tools may collect standard computer information and information about the use and performance of the Tools that may be transmitted to Microsoft and analyzed for purposes of improving the quality, security, and reliability of the Tools.  We do not collect your name, address or other contact information.  In some cases, you may not be able to opt out of the collection and transfer of usage data to Microsoft.

    In addition, some Tools may have logging capabilities that permit you to transmit data to Microsoft for troubleshooting purposes.

    Apps AppspspSQLServerAppsModule
    Summary

    Some SQL Server features may be enhanced by apps ("SQL Server Apps"). We collect information about the installation of SQL Server Apps and the devices on which they are installed. We also collect data about how you interact with SQL Server Apps, such as usage frequency.

    The Apps are available on various platforms, including Windows, iOS, and Android.

    Full text

    Some SQL Server features may be enhanced by apps ("SQL Server Apps"). We collect information about the installation of SQL Server Apps and the devices on which they are installed. We also collect data about how you interact with SQL Server Apps, such as usage frequency.

    The Apps are available on various platforms, including Windows, iOS, and Android.

    When you install the Apps, we collect data that tells us if the App was installed properly, the installation date, the App version, and standard computer information.

    We also collect data about how you interact with the Apps, such as usage frequency, your interactions with features, and errors encountered, in order to improve the Apps. This data is collected on a regular basis to help us determine the number of App users and identify feature usage, as well as performance and reliability issues associated with different App versions, operating systems, and browsers.

    Other Important Privacy Information Other InformationpspOtherInformationModule
    Summary

    Learn more about

    • Protecting the security of personal information
    • Where we store and process information
    • Changes to our privacy statements

    How to Contact Us

    • If you have a technical or general support question, please visit http://support.microsoft.com/ to learn more about Microsoft Support offerings.
    • If you have a Microsoft account password question, please visit Microsoft account support.
    • If you have a general privacy question or a question for the Chief Privacy Officer of Microsoft or want to request access to your personal information, please contact us by using our Web form.
      • By mail: Microsoft Privacy, Microsoft Corporation, One Microsoft Way, Redmond, Washington 98052 USA
      • By Phone: 425-882-8080
    • Microsoft Ireland Operations Limited is our data protection representative for the European Economic Area and Switzerland. The data protection officer of Microsoft Ireland Operations Limited can be reached at the following address:

      Microsoft Ireland Operations, Ltd.
      Attn: Data Protection
      Carmenhall Road
      Sandyford, Dublin 18, Ireland

    • To find the Microsoft subsidiary in your country or region, see http://www.microsoft.com/worldwide/.
    Full text

    Below you will find additional privacy information you may find important. Much of this describes practices that are common across the industry, but we want make sure you are aware of them. Please keep in mind that this information is not a complete description of our practices - this is all in addition to the other, more specific information contained elsewhere in this privacy statement.

    On this page:

    Protecting the Security of Personal Information

    Microsoft is committed to protecting the security of your personal information. We use a variety of security technologies and procedures to help protect your personal information from unauthorized access, use or disclosure. For example, we store the personal information you provide on computer systems that have limited access and are in controlled facilities. When we transmit highly confidential information (such as a credit card number or password) over the Internet, we protect it through the use of encryption, such as the Secure Socket Layer (SSL) protocol.

    If a password is used to help protect your accounts and personal information, it is your responsibility to keep your password confidential. Do not share it. If you are sharing a computer, you should always log out before leaving a site or service to protect access to your information from subsequent users.

    Where Information is Stored and Processed

    Personal information collected on Microsoft sites and services may be stored and processed in the United States or any other country where Microsoft or its affiliates, subsidiaries or service providers maintain facilities. Microsoft abides by the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of data from the European Economic Area and Switzerland. To learn more about the Safe Harbor program, and to view our certification, please visit http://www.export.gov/safeharbor/.

    Microsoft may retain your personal information for a variety of reasons, such as to comply with our legal obligations, resolve disputes, enforce our agreements, and as long as necessary to provide services. To learn how to access your personal information, visit Accessing Your Information.

    Changes to Our Privacy Statements

    We will occasionally update our privacy statements to reflect customer feedback and changes in our services. When we post changes to a statement, we will revise the "last updated" date at the top of the statement. If there are material changes to the statement or in how Microsoft will use your personal information, we will notify you either by prominently posting a notice of such changes before they take effect or by directly sending you a notification. We encourage you to periodically review the privacy statements for the products and services you use to learn how Microsoft is protecting your information.

    How to Contact Us

    • If you have a technical or general support question, please visit http://support.microsoft.com/ to learn more about Microsoft Support offerings.
    • If you have a Microsoft account password question, please visit Microsoft account support.
    • If you have a general privacy question or a question for the Chief Privacy Officer of Microsoft or want to request access to your personal information, please contact us by using our Web form.
      • By mail: Microsoft Privacy, Microsoft Corporation, One Microsoft Way, Redmond, Washington 98052 USA
      • By Phone: 425-882-8080
    • To find the Microsoft subsidiary in your country or region, see http://www.microsoft.com/worldwide/.