Since it was released, Windows 10 has incited a privacy furor.
Hundreds of commenters on sites such as Hacker News and Reddit have criticised default settings that send personal information to Microsoft and use bandwidth to upload data to other Windows 10 computers.
Concerns have risen over the Wi-Fi password sharing feature, Microsoft’s plans to keep people from running counterfeit software, the inability to opt out of security updates, weekly dossiers sent to parents on their kids’ online activity, and the fact that Windows 10 by default shares a lot of your personal information – contacts, calendar details, text and touch input, location data, and more – with Microsoft’s servers.
Since the release, Ars Technica has revealed that even when all data collection settings were turned off, Windows 10 still sent identifiable data to Microsoft.
On Monday, Microsoft attempted to clear the air when it comes to the privacy implications of data collection in the new operating system.
Terry Myerson, leader of the Windows and Devices Group, put up a blog post that, for the most part, reiterates the company’s privacy policy.
For one thing, Windows 10 is not scanning emails for the purpose of targeting advertising, Myerson said:
No matter what privacy options you choose, neither Windows 10 nor any other Microsoft software scans the content of your email or other communications, or your files, in order to deliver targeted advertising to you.
Windows 10 collects two types of data, Myerson said.
The first is designed to help Microsoft and third-parties identify bugs or problems in software, including anonymous device ID, device type, and application crash data.
What Microsoft doesn’t collect for diagnostics and application improvement: any content or files, nor any information that could identify a user, such as name, email address or account ID.
Myerson gave an example of what Microsoft does with such collected data: In August, aggregate data showed that a particular version of a graphics driver was crashing and then causing reboot on some Windows 10 systems.
Using the safety and reliability data, Microsoft worked with the partner who builds the driver, turning around a fix for the public within 48 hours.
For the sake of personalisation, Windows 10 also collects information on user habits – the better to provide users with information such as updates on game scores or to recommend apps they might enjoy.
Microsoft’s digital assistant Cortana collects the most, but it and other settings that remember preferences can be disabled, Myerson noted.
The post describes a third class of data – advertising data that “we don’t collect”, Microsoft stressed.
In Ars Technica’s ongoing efforts to analyse just what, exactly, Windows 10 is really up to with our data, vs. the somewhat loose descriptions Microsoft’s put out in messages such as Myerson’s, the publication dissected Monday’s post and found a few interesting things to note:
- Regarding telemetry data: Unlike previous versions of the OS, most Windows users – those running Home and Pro versions – can’t opt out from sending data such as crash logs in Windows 10. Myerson writes that enterprise users will have the option to disable the telemetry later this year, though the company strongly recommends against it. When Ars asked what that means, it said simply that Enterprise users will still have opt-out ability, though it’s not actually part of the upcoming feature update.
- Are we really in control of personalisation data? As mentioned above, Ars’s testing has shown even with the most restricted privacy settings, Windows 10 can’t seem to stop babbling to Microsoft’s servers. With regards to Monday’s post, nothing seems to have changed about that.
- What about targeted advertising based on other content? Microsoft says file contents or communications within email or Skype aren’t being used to target advertising, but it makes no mention of data derived from Cortana, store purchases or Bing searches. As Ars’s Peter Bright points out, this could mean that “while Cortana can’t use your email to tailor ads to your interests, it appears that she could use the appointments in your calendar to do so, for example.”
Image of spy courtesy of Shutterstock.
Sammie
If we were to believe everything that is said by Microsoft, we would be living in the world of fantasy. After having gone through the default settings on my Win 10 test machine, I can assure that a privacy conscious user will find it quite intimidating. The method of information collection was inconspicuous and I had to go deep down certain settings to be able to disable what the OS did by default. On one side it may improve user experience but at the cost of personal privacy, it is a strict no no. Time to Wireshark the traffic going out of the machine to see what actually happens between the machine and MS. Love to hear from any users who have done this.
Anonymous
I think the Chinese can tell you as they have all the OPM Federal Government employee info. :(
Brow beaten
Need a tutorial in using wireshark!
Also is it possible at router or firewall level to just block attempts by w10 to “call home”?
Sammie
Technically possible as long as you understand the traffic and can isolate it. You need to keep in mind that there would be other traffic related to Windows Updates, MS Security Essentials or other MS products that might be installed on the same machine.
Dan B.
Unfortunately, blocking “call home” may impact Windows Security Updates which are likely to be requried in the coming months. Wireshark has documentation on its site which is fairly decent and will assist in capturing the traffic. although reading the data is a different story, you need to know what your looking at in order to really understand it.
– Sammie; i’ve ran wireshark on my system for a full week and found that data is being transmitted to MS by my windows 10 system although the packets were encrypted and i am unable to determine all the details as of yet.
Sammie
Not sure if I should be happy that MS is encrypting packets as it ensures security or to be worried as they are actually capturing valuable information with the need to encrypt. It would be interesting to get an idea about the information that gets passed between the PC and MS.
Laurence Marks
Learning Wireshark is trivial. The problem arises if Microsoft (or Google or Yahoo!) is encrypting the packets. Then you are S.O.L.
RichardD
You can apparently turn off telemetry completely in home / pro editions by changing the registry.
I’d post a link, but it seems that’s no longer allowed here.
Somebody
No, you cannot turn off telemetry in Home and Pro, they specifically state that. It is not possible even with registry settings, GPO changes, and disabling services.
You are supposed to be able to turn off telemetry in the corporate LTSB version but even that makes multiple connections back home.
teejayuu
“If we were to believe everything that is said by Microsoft [Google, Apple, Facebook et al], we would be living in the world of fantasy.” – like it or not…welcome to the real world
roy jones jr
Just like The Matrix.
Chris
“For the sake of personalisation, Windows 10 also collects information on user habits – the better to provide users with information such as updates on game scores or to recommend apps they might enjoy.”
“recommend apps they might enjoy”
This
Chris C
Isn’t that “technically” targeted advertising?
Anonymous
Except for the “technically” part.
Mahhn
W7 – (for home) My streaming media starts lagging. Stop/disable Windows update service, all is good. Keeps enabling itself.
This weekend I’ll build a locked down XP box, I’m done thumb wrestling with MS over privacy.
Somebody
The latest updates are now downloading WIN10 in the background to a hidden folder on your system. You can disable it and recover the stolen drive space.
Search for Win 7 telemetry blocking, there are a couple of open source scripts that block the telemetry updates, disable the telemetry services, and block the ms domains responsible.
Mike
I’ll answer the simpler question first: Download Wireshark, run as administrator (or as root/sudo on Linux). Monitor your adapter (wifi or Ethernet). Then set a filter and click apply. An oversimplification, but that’s it in a nutshell.
Two fun filters to try: dns contains microsoft | dns contains akadns
Over a short period of time both of these filters will identify a huge number of telemetry, advertising, cloud storage, and other communications between Microsoft and partners. They will also give you insight into the enormous number of domains supporting these activity. Many, many dozens. I gave up trying to keep a list.
Once DNS is established between your computer and the mothership, communication often shifts from HTTP (unencrypted plaintext) to HTTPS (encrypted comms). You’ll need a tool like Fiddler to track and decrypt this traffic. But I’m getting beyond your questions.
To the harder question: There are a lot of people attempting to block attempts by w10 to “call home”. Ain’t easy. Unlike the above, some DNS is hard-coded into DLLs. At least the activity requiring DNS lookups can be blocked at /etc/hosts but be aware this will break some things (e.g. search) that you still want w10 to be able to do in order to function as a useful desktop OS.
My guess this will be a long game of Whack-a-Mole as people attempt to block and MS develops new monitoring tools/domains. Far easier to switch to Linux. Recommend setting up dual boot so you can use Windows when you need to (won’t be as often as you might imagine).
Sammie
I guess there is a lot more effort involved if someone were to feed Win10 a lot of test packers to uniquely identify what information gets sent back to MS and put a tap on how useful it could be. From a corporate perspective, I wonder how safe it would be to deploy Win 10.
Chuck
The MS rep kept saying that they do not collect emails and files etc. for “advertising”. How about for any other reason?
“We will access, disclose and preserve personal data, including your content (such as the content of your emails, other private communications or files in private folders), when we have a good faith belief that doing so is necessary to”
Anonymous
They would need a warrant, with out one any info would be invalid. Just in case you are up to no good. on the other had they should not even be able to do this it is wrong.
Consider
They don’t need a warrant. They aren’t the police. Agreeing to the license agreement is point-blank giving them permission to take whatever they want and hand hand it over to whoever they want.
It’s a complete and utter abrogation of justice and nobody is willing to do a damned thing about it.
Anonymous
Doesn’t Matter what MS says. It’s obvious that it’s a spying machine same as GOV run GOOGLE.
anon
This is not tin-foil hat stuff.
Google (lol) a company named In-Q-Tel and their relationship with google.
Bill P
I trust Microsoft not to spy on me as much as I believe that the NSA has stopped it’s phone surveillance dragnet on American’s, 0%!!
abcabcabc
research which files are running when data is collected, which way, which file/application what is doing, then make some changes on windows os…. install any “file locker” and make these files/logs “unchangeable” by deny editing, deny copy, deny rename, deny move, deny everything to every file/log which windows try to “send home”. But bee sure the files to be empty.
or simply deny creating such file or by that specific name.
or delete files/application/services which collecting such logs…