Privacy guide for MyAnalytics admins
By using data generated from everyday work in Office 365, MyAnalytics helps people understand how they spend their limited time and who they spend it with, and then presents intelligent tips on how to work smarter.
This page answers key questions on how MyAnalytics processes information in a manner that protects employee privacy and supports compliance with local regulations, such as General Data Protection Regulation (GDPR).
Summary of key points
MyAnalytics is not designed to enable employee evaluation, tracking, automated decision-making, profiling, or monitoring. MyAnalytics provides insights to individuals through a personalized dashboard, a weekly digest, an Insights Outlook add-in, and inline suggestions in Outlook. MyAnalytics has no mechanism or option that allows anyone but the user to access the personalized information that is displayed through these surfaces, unless that person purposefully and independently shares that information. Insights provided by MyAnalytics cannot be used for automated decision-making or for profiling.
MyAnalytics does not give employees access to new personally-identifiable information on other coworkers. MyAnalytics converts data into insights by performing calculations on information that people generate just by going about their work day. The majority of the data that employees see in MyAnalytics is simply an aggregation of information to which they already have access, but that they wouldn’t be able to quickly perform calculations on without some support.
MyAnalytics data is processed and stored in the employee’s Exchange Online mailbox. MyAnalytics processes data from these sources: Exchange Online email and calendar data, chat and call signals from Skype for Business and from Teams, and—if both the organization's IT administrator and an individual opt in—Windows 10 application activity history. MyAnalytics stores and processes this data inside each employee’s Exchange Online mailbox.
MyAnalytics supports General Data Protection Regulation (GDPR) compliance. Microsoft has designed MyAnalytics to support customers’ needs to comply with GDPR requirements.
MyAnalytics can be configured so that individuals must purposefully opt in. By default, any time a license with the MyAnalytics service is assigned to a person, that person is automatically opted in. However, administrators can configure MyAnalytics to be "default off," so that people can choose for themselves whether to opt in after being assigned a license.
MyAnalytics reminds people that their data is private and secure. A few days after a license with the MyAnalytics service is assigned to a person, that person receives a welcome email that clearly lays out how MyAnalytics works, with a reminder that all of their data is private. The other MyAnalytics user interfaces, such as the weekly digest and personal dashboard, reinforce this message.
How MyAnalytics works
MyAnalytics presents insights in the following ways:
MyAnalytics provides insights with the following types of data.
Mailbox data: Email, calendar, chat, and call activity that people generate by using Office 365, such as time spent in meetings or emails sent to a specific person or group.
Windows 10 activity history data: Data on people's usage of apps and services on their device: whether they worked on a document and whether they browsed the web.
Incremental data: Data that would otherwise be unavailable to the employee but is presented in an aggregated form designed to protect individual privacy.
Mailbox data represents information that people already have access to simply by going about their job, such as sending emails, arranging meetings, or chatting with coworkers. MyAnalytics processes and displays this information in new ways that make it actionable.
For example, MyAnalytics provides views that allow people to quickly understand how much time they spend in meetings, and in email every day, who they collaborate with the most, who they are losing touch with, and to whom they have made commitments and requests.
People can take action on this information. They might decide that they spend too much time in meetings, for example, and adopt a personal goal of running more efficient meetings.
These insights are derived from data that is already available to people in the following places:
- Their Exchange Online mailbox
- Their activity in OneDrive and SharePoint documents
- Their chat and call history from Teams and from Skype for Business
MyAnalytics simply applies some basic calculations and rules to make this data more actionable. Mailbox data is stored directly in each employee's Exchange Online mailbox.
For example, if people want to determine which colleagues sent them the most email over the past week, they could technically do so without MyAnalytics by manually counting emails from coworkers in their inbox. Similarly, people could determine their coworkers’ average response time to the emails that they send by using timestamp information readily available in their mailbox. MyAnalytics saves people the trouble of having to perform these tedious calculations.
Windows 10 Activity History data
Windows 10 activity history data refers to the things people do on their device, such as the apps and services they used, whether they worked on a document, and whether they browsed the web. The activity history is stored locally on the device, and if the employee is signed in to the device with a Microsoft account and gives permission, Windows sends the activity history to Microsoft.
MyAnalytics uses Windows 10 activity history data to compute insights (for example, time spent in apps, multi-tasking in meetings) about a person's work habits. These insights are private and stored in the person's Exchange Online mailbox.
Also note that, if the person chooses to send Windows 10 activity history to MyAnalytics, activity data is saved even if they use a non-work or non-school account (for example, a personal live.com or facebook.com account) to connect to the app or service. However, activity data is not saved when they browse with InPrivate tabs or windows in the Microsoft Edge web browser.
In a few cases, MyAnalytics provides people with de-identified information on other people that would not have otherwise been available to them, such as for Email read rates.
Email read rates and document open rates
MyAnalytics tracks the percentage of recipients who opened an email message (in the Outlook add-in) for email that a person sends to five or more people.
However, to preserve privacy, MyAnalytics does not track read rates for messages sent to fewer than five people. Also, MyAnalytics does not show read rates of 0% or 100%, as that would allow people to make definitive conclusions about individual coworker actions. Instead, the read rate is displayed as a range, greater than or less than a certain threshold value that depends on the number of recipients of the email.
This metric is calculated based on the "read" flag in Exchange Online. For some people, messages are flagged as "read" when they open a message in the Outlook preview pane. For others, they might need to double-click to open the message to mark it as "read."
People can control this setting in their Outlook settings. To show these signals in the sender’s mailbox, the "read" flag is copied within the Office 365 environment, and then delivered to the sender's mailbox.
Similarly, MyAnalytics tracks the percentage of recipients who opened a document that was shared as a link or as an attachment in an email that a person sends to five or more people. This metric calculation is based on whether recipients have opened shared documents that are stored in SharePoint or in OneDrive for Business.
Assistance for people managers
People managers often have hectic schedules and it can be tough to stay in close contact with each team member. MyAnalytics brings together all the information managers need to stay caught up and respond quickly to important requests.
All assistance for managers in MyAnalytics relies exclusively on information from the manager's own mailbox; managers do not receive any incremental information from team members' mailboxes that could be used for performance management. For example: managers can use this feature to review important unread emails in their inbox from team members, but they cannot see whether team members have read emails that the manager has sent.
Managers are identified by using Azure Active Directory. The feature is only available to users who have direct reports listed in Azure AD.
Managers have the option to edit their team list if they notice any inaccuracies. Any changes the manager makes are used only in their MyAnalytics experience, and are not synchronized back to Azure AD.
MyAnalytics provides flexible and configurable controls that are designed to enable organizations and their members to address varying legal and policy needs regarding privacy and use of employee data. When enabling MyAnalytics for the organization, admins can make the following choices:
Determine which people have access to MyAnalytics Admins can determine which people can access and use MyAnalytics by issuing licenses to only those people who should have access.
Determine default opt-in settings Admins can configure MyAnalytics to be "default off," which means that licensed employees must individually opt in to MyAnalytics to gain access to their dashboard and Outlook add-in and to contribute to incremental data. Alternatively, MyAnalytics can be configured to be "default on," which means that licensed employees automatically contribute to incremental data and have access to their dashboard and to the Outlook add-in, but can subsequently opt out through the Settings menu. To learn more, see Configure access at the user level.
Determine whether employees can opt-in to receive insights on Windows 10 application usage Admins must consent before MyAnalytics users can opt in to receive insights derived from Windows 10 activity history data.
Determine which employees in sensitive roles should be excluded from incremental data Some organizations may have employees in sensitive roles who should never contribute to incremental data. To support this, MyAnalytics provides admins with the ability to mark these people as “excluded.” Excluded users cannot opt in to contribute to incremental data. However, the MyAnalytics experience will still be available to these users provided that they are licensed.
Note that if default settings are used, the following applies:
All employees in your organization contribute to incremental data whether or not they have been issued licenses with the MyAnalytics service.
MyAnalytics is automatically enabled for employees after a license is assigned to them. If, instead, you want licensed employees to have the choice to opt in, you must change the default settings.
How employees can opt-in and opt-out
Users can opt-in or opt-out of the elements of MyAnalytics by using the Settings > Feature settings menu in Office 365, as shown here:
MyAnalytics is a first-party application that's built on Microsoft Graph. Microsoft Graph consists of a set of REST-based API calls that allow developers to interact with the Microsoft technologies that a given organization uses. In order to use these API calls, developers must have specific permissions to access any data they request. Administrators control both the deployment of any Microsoft Graph application and permissions to access these applications.
The Microsoft Graph cannot be turned on or off globally through the Office 365 Admin Center, but administrators can achieve this effect by blocking employees’ ability to install third-party apps or by restricting developer access permissions. Learn more about Microsoft Graph.
Employee experience of MyAnalytics
Dashboard and Outlook add-in
Within a few days of the assignment of a license with the MyAnalytics service to an employee—either as part of an overall Microsoft 365 Enterprise license or as an add-on license—the user’s MyAnalytics dashboard and Outlook Add-in become available.
To notify employees that their dashboard and Outlook add-in have been enabled, MyAnalytics delivers a welcome email within a few days of license assignment. The email introduces people to the application and has a reminder that MyAnalytics is private and personal.
The week after the welcome email is delivered, users begin to receive the weekly digest.
As is the case with the full Office 365 suite, MyAnalytics helps support compliance with GDPR requirements. Microsoft helps data controllers meet the following obligations for MyAnalytics:
Secure and protect personal data of users. All MyAnalytics data is stored in the employees’ Exchange Online mailbox. MyAnalytics appends computed metrics such as “Meeting hours” to the mailbox. Thus, MyAnalytics meets this obligation by virtue of Exchange Online also meeting the obligation:
- Microsoft will not mine customer data in Exchange Online for advertising.
- Microsoft will not voluntarily disclose Exchange Online customer data to law enforcement agencies.
- Microsoft will meet all requirements related to encryption of Exchange Online data and implement controls to reduce security risks and help ensure business continuity, as described in ISO 27001 and 27018.
Notify users in the event that a breach is detected. Microsoft will notify customer privacy contacts within 72 hours of Microsoft becoming aware of a breach by using Office 365 incident response standard operating procedures.
Honor user requests (DSRs) to export, delete, or restrict processing personal data. Microsoft supports your need to honor user requests in the following ways:
- Data export requests: Users can go to the MyAnalytics dashboard while signed in to their Office 365 account to view the insights that are generated about how they spend their time at work. They can take screenshots of MyAnalytics insights if they want to have permanent copies of their information.
- Request to restrict processing:
- Use PowerShell to opt employees out of MyAnalytics.
- Delete employee data by signing in to Azure Active Directory admin center and removing the employee through the User Management Portal, which will remove all of the employee's data within 30 days. However, if you want to permanently delete the user immediately, follow the steps in Permanently delete a user.
To learn more, see GDPR compliance.