Skip to content

Office 365 Privacy

Microsoft 365 is a cloud product. CERN contract with Microsoft stiuplates that user data at rest is stored in Switzerland or the EU.

Please note:

  • Creation, editing and sharing of MS Office documents is possible directly in CERNBox or in OneDrive. In both cases, the documents are rendered in the browser by Microsoft software running in the Microsoft cloud.
  • Microsoft enterpise apps - the MS Office apps installed on ther user's Widnows or Mac computer - collect and send to Microsoft diagnostic data about Office client software running on the user's device.
  • In addition, Microsoft enterprise apps provide connected experiences that use cloud-based functionality to provide enhanced Office features. This means that parts of your content - for example the names of the documents that you recently edited - is sent to the Microsoft cloud. In addition, if you choose to use a connected experience that analyzes your content, then this content will be sent to the Microsoft cloud. For example, if you chose to use Translate in Word, the text you typed and selected to translate in the document is also sent to and processed by Microsoft to provide you the connected experience.

For more information on which data is sent from Microsoft 365 Apps for enterprise to Microsoft and what privacy controls you can use in Office 365, check: https://learn.microsoft.com/en-us/deployoffice/privacy/overview-privacy-controls.

On CERN-managed Windows devices, the following privacy settings are set by default.

MS Office privacy settings on CERN-managed Windows devices

Settings State Comment
Disable Opt-in Wizard on first run Enabled
The Opt-in Wizard does not display the first time users run an Office 2016/O365 application.
This policy setting controls whether users see the Opt-in Wizard the first time they run a Microsoft Office 2016/O365 application.
Enable Customer Experience Improvement Program Disabled
Office 2016/O365 users cannot participate in the Customer Experience Improvement Program.
This policy setting controls whether users can participate in the Microsoft Office Customer Experience Improvement Program to help improve Microsoft Office.
When users choose to participate in the Customer Experience Improvement Program (CEIP), Office 2016/O365 applications automatically send information to Microsoft about how the applications are used.
This information is combined with other CEIP data to help Microsoft solve problems and to improve the products and features customers use most often.
This feature does not collect users' names, addresses, or any other identifying information except the IP address that is used to send the data.
Configure the level of client software diagnostic data sent by Office to Microsoft Enabled
Level of diagnostic data : Neither
Neither means no diagnostic data about Office client software running on the user's device is sent to Microsoft.
This policy setting allows you to configure the level of client software diagnostic data that is collected and sent to Microsoft about the Office client software running on the user's device.
Sent Personal Information Disabled
Users cannot send personal information to Microsoft.
This policy setting controls whether users can send personal information to Office.
When users choose to send information Office 2016/0365 applications automatically send information to Microsoft.
Send Office Feedback Disabled This policy setting manages the Office Feedback Tool. The Office Feedback Tool allows users to provide Microsoft feedback regarding their positive and negative experiences when using Office.
Automatically receive small updates to improve reliability Disabled
Users will not receive updates from Office Diagnostics.
This policy setting controls whether Microsoft Office Diagnostics is enabled.
Office Diagnostics enables Microsoft to diagnose system problems by periodically downloading a small file to the computer.

Additional resources