Microsoft is under investigation again by the European Union. The body has been asked to investigate the firm by the Dutch Data Protection agency about how Windows 10 collects user data for telemetry. The firm had initially investigated Windows 10 before the establishment of the General Data Protection Regulation, and has now found fresh matters of concern regarding “new, potentially unlawful, instances of personal data processing.”
Microsoft told TechCrunch the following in regards to the matter:
The Dutch data protection authority has in the past brought data protection concerns to our attention, which related to the consumer versions of Windows 10, Windows 10 Home and Pro. We will work with the Irish Data Protection Commission to learn about any further questions or concerns it may have, and to address any further questions and concerns as quickly as possible.
Microsoft is committed to protecting our customers’ privacy and putting them in control of their information. Over recent years, in close coordination with the Dutch data protection authority, we have introduced a number of new privacy features to provide clear privacy choices and easy-to-use tools for our individual and small business users of Windows 10. We welcome the opportunity to improve even more the tools and choices we offer to these end users.
As for the Dutch DPA, their primary concerns are essentially as follows:
Microsoft is permitted to process personal data if consent has been given in the correct way. We’ve found that Microsoft collect diagnostic and non-diagnostic data. We’d like to know if it is necessary to collect the non-diagnostic data and if users are well informed about this.
Microsoft has done a lot of work to make sure users of Windows 10 have enough information about what data it collects and why it’s being used. Whether it still has more work to do is another matter and what the EU will be investigating.