What information can my company see when I enroll my device?

Your company cannot see your personal information when you enroll a device with Microsoft Intune. When you enroll a device, you give your company permission to view certain pieces of information on your device, such as device model and serial number. Your company uses this information to help protect the corporate data on the device.

What your company can never see:

  • Calling and web browsing history
  • Email and text messages
  • Contacts
  • Calendar
  • Passwords
  • Pictures, including what's in the photos app or camera roll

What your company can always see:

  • Device model, like Google Pixel
  • Manufacturer, like Microsoft
  • Operating system, like iOS
  • App names, like Microsoft Word
  • Device owner
  • Device name
  • Serial number

What your company might be able to see:

  • Phone number: for Corporate-owned devices, your full phone number can be seen. For Personal-owned devices, just the last four digits of your phone number are visible to your company. You can see the Ownership Type for each individual device by opening that device's Device Details page.
  • Location: your company can never see your device's location, except if you have an iOS device that is supervised and has gotten lost. How do I know?
  • App inventory: if your company uses Mobile Threat Defense, they will be able to view what more details about the apps that are on your iOS device. Find out more about Mobile Threat Defense.
  • Network information: some information about network connections for Android devices may be available to your company support. For example, if your company requires devices to remain within a certain building, your device would identify the network where it is connected.