Microsoft SQL Legal & Privacy

Microsoft SQL Server Privacy Statement

This privacy statement explains how Microsoft SQL Server collects, uses, and shares information when you use our products and services. Microsoft is committed to protecting your privacy.

1. Information We Collect

When you use Microsoft SQL Server, we may collect certain types of information, including:

• Diagnostic Data: This includes crash dumps, error reports, and performance data. This data helps us identify and fix issues, improve performance, and enhance the security of SQL Server. We strive to collect only the minimum necessary data to achieve these goals.
• Usage Data: Information about how you use SQL Server features, such as the frequency of certain operations or the adoption of new functionalities. This helps us understand user behavior and prioritize feature development.
• Telemetry Data: Data related to the configuration and operation of SQL Server, including version information, installed components, and operational metrics. This data is anonymized or aggregated whenever possible.
• Account Information (where applicable): If you use cloud-based SQL services (e.g., Azure SQL Database), we collect account and subscription details necessary for service provision and billing.

2. How We Use Your Information

The information collected is used for the following purposes:

• Product Improvement: To diagnose and fix problems, improve performance, and develop new features for SQL Server.
• Security: To protect SQL Server and its users from fraud, threats, and other malicious activities.
• Service Operation: To provide and maintain the services, including managing your accounts and subscriptions for cloud services.
• Compliance: To meet legal and regulatory obligations.

3. Sharing of Your Information

Microsoft does not sell your personal information. We may share information in the following limited circumstances:

• With Your Consent: We will share information with your consent or at your direction.
• Service Providers: We may share information with third-party service providers who perform services on our behalf, under strict confidentiality agreements. These providers are only authorized to use your information to provide services to Microsoft.
• Legal Requirements: We may disclose your information if required to do so by law or in response to a valid request by a public authority (e.g., a court or government agency).
• Business Transfers: In connection with any merger, sale of assets, or acquisition, personal information may be transferred.

4. Data Security

Microsoft implements robust security measures to protect the data we collect from unauthorized access, disclosure, alteration, or destruction. These measures include encryption, access controls, and regular security audits.

5. Your Choices and Control

Depending on your version of SQL Server and your deployment environment (on-premises or cloud), you may have choices regarding the data we collect and how it is used:

• Telemetry Settings: For on-premises installations, you can often configure telemetry levels through SQL Server Configuration Manager or other administrative tools.
• Azure Portal: For Azure SQL services, you can manage privacy settings and review data collection practices through the Azure portal.
• Do Not Send: You may choose not to send diagnostic data by adjusting the relevant settings.

For detailed instructions on managing your privacy settings, please refer to the specific documentation for your version of Microsoft SQL Server.

6. Children's Privacy

Microsoft SQL Server is not intended for use by children under the age of 13 without parental consent. We do not knowingly collect personal information from children under 13.

7. Changes to This Statement

We may update this privacy statement from time to time. Any changes will be posted on this page with an updated "last modified" date. We encourage you to review this statement periodically.

Last Updated: October 26, 2023