隐私和个人数据Privacy and personal data

用户可以在由 Microsoft 托管桌面管理的设备上接收、传输和存储数据。Users can receive, transmit, and store data on devices managed by Microsoft Managed Desktop. 他们信任数据隐私受到保护,并且仅按照与预期一致的方式使用。They trust that the data's privacy is protected and used only in a way that is consistent with their expectations. 本文介绍了 Microsoft 托管桌面如何收集、存储、保留、处理、保护、共享、审核和导出个人数据。This article explains how Microsoft Managed Desktop collects, stores, retains, processes, secures, shares, audits, and exports personal data. 你还将了解管理员如何查看、更正和删除个人数据。You'll also learn how an admin can view, correct, and delete personal data.

Microsoft 托管桌面不会将收集的任何个人数据用作提供用于分析、广告或市场营销目的的服务的一部分。Microsoft Managed Desktop does not use any personal data collected as part of providing the service for profiling, advertising, or marketing purposes.

Microsoft 托管桌面的数据收集Data collection of Microsoft Managed Desktop

当用户将公司设备注册到 Microsoft 托管桌面时,会使用 Windows 和 Microsoft Intune 在技术层处理数据收集。When users enroll corporate devices into Microsoft Managed Desktop, data collection is handled – on the technical layer – by using Windows and Microsoft Intune. 这些源收集有关用户设备的个人数据,例如 Microsoft 托管桌面的设备名称,以便识别要管理和提供 Microsoft 托管桌面体验的设备。These sources collect personal data about users' devices, such as device names for Microsoft Managed Desktop to be able to identify the device to be managed and provided with the Microsoft Managed Desktop experiences.

Microsoft 托管桌面不会自行收集数据以提供其服务 (IT 管理员联系信息除外Microsoft Managed Desktop does not collect data by itself to provide its service (except for IT Admin contact information. 相反,Microsoft 托管桌面会重复使用其他源(如 Windows 和 Microsoft Intune)已收集的数据。Instead, Microsoft Managed Desktop reuses data that other sources, such as Windows and Microsoft Intune, have already collected. Microsoft 托管桌面使用这些服务从注册设备收集的数据:Microsoft Managed Desktop uses data these services collect from enrolled devices:

  • 来自由 Microsoft 托管桌面管理的设备的 Windows 诊断数据将发送到 Microsoft 的 Windows 诊断数据存储。Windows diagnostic data from devices managed by Microsoft Managed Desktop is sent to Microsoft's Windows diagnostic data stores.
  • Microsoft 托管桌面 使用新式管理 来管理已注册的设备。Microsoft Managed Desktop uses modern management for managing the enrolled devices. 作为"新式管理"的一部分,设备必须在租户的 Azure Active Directory 中注册。As part of "modern management," the devices must be enrolled in the tenant’s Azure Active Directory.
  • 为了将高度优化和安全的配置分发到已注册的设备,Microsoft 托管桌面使用 Microsoft Intune。For distributing its highly optimized and secure configuration to enrolled devices, Microsoft Managed Desktop uses Microsoft Intune.
  • Microsoft 托管桌面为使用 Microsoft Defender 高级线程保护的客户使用 Microsoft Defender 高级线程保护中的安全智能数据。Microsoft Managed Desktop uses security intelligence data from Microsoft Defender Advanced Thread Protection for those customers that use that service.

Microsoft 托管桌面中的数据存储和源Data storage and sources in Microsoft Managed Desktop

在 Microsoft 托管桌面获取数据后,它需要提供其服务、存储和数据处理,如下所示:After Microsoft Managed Desktop gets the data, it needs to provide its service, storage, and processing of that data proceeds as follows:

存储数据、存储位置和数据保留Storing data, storage location, and data retention

Microsoft 托管桌面将数据存储在下列一个或多个 Microsoft 存储服务中:Microsoft Managed Desktop stores its data in one or more of the following Microsoft storage services:

  • Azure SQLAzure SQL
  • Azure 存储Azure storage
  • Dynamics 365Dynamics 365

Microsoft 托管桌面将数据存储在美国。Microsoft Managed Desktop stores its data in the United States. 个人数据由 Microsoft 托管桌面最长保留 30 天,但由 Microsoft Defender for Endpoint 收集的 Microsoft 托管桌面设备的警报数据除外。Personal data is retained by Microsoft Managed Desktop for a maximum of 30 days, except for alert data for Microsoft Managed Desktop devices collected by Microsoft Defender for Endpoint. 实际警报数据 (可能包含个人数据) 存储 180 天。The actual alert data (which could include personal data) is stored for 180 days. 删除个人数据的警报数据存储最多两年。Alert data with personal data removed is stored for up to two years. 根据一般数据保护条例 (GDPR) 和加州消费者隐私法案 (CCPA) ,Microsoft 托管桌面对警报数据中存储的任何个人数据均享有数据主体权利。In compliance with the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA), Microsoft Managed Desktop honors the data subject rights for any personal data that is stored in alert data.

员工位置Staff location

Microsoft 托管的桌面操作和安全操作团队位于美国和印度。The Microsoft Managed Desktop Operations and Security Operations teams are located in the United States and India.

Microsoft 托管桌面的数据使用情况Data usage of Microsoft Managed Desktop

Microsoft 托管桌面使用此数据:Microsoft Managed Desktop uses this data:

数据源Data sources 与 Microsoft 托管桌面一同使用Use with Microsoft Managed Desktop
Azure Active Directory 数据Azure Active Directory data 用于为租户管理员创建的报告,可在 Microsoft 托管桌面管理门户中查看。Used in reports created for tenant admins, which are available in the Microsoft Managed Desktop Admin portal.
Intune 数据Intune data 用于为租户管理员创建的报告,可在 Microsoft 托管桌面管理门户中查看。Used in reports created for tenant admins, which are available in the Microsoft Managed Desktop Admin portal.
Microsoft Defender for EndpointMicrosoft Defender for Endpoint 用于解决由 Microsoft 托管桌面安全运营中心与 SOC (在已注册) 。Used for addressing security threats detected on enrolled devices by Microsoft Managed Desktop’s Security Operations Center (SOC).
Windows 诊断数据Windows diagnostic data 用于确定托管设备的更新状态,并提供和改进 Microsoft 托管桌面的 IT 即服务 (ITaaS) 产品。Used to determine the update status of managed devices and to provide and improve Microsoft Managed Desktop’s IT-as-a-Service (ITaaS) offering.
管理员联系人数据Admin contact data 由 Microsoft 托管桌面用于与租户管理员通信。Used by Microsoft Managed Desktop to communicate with tenant administrators.

Microsoft 托管桌面处理的实体Entities processed by Microsoft Managed Desktop

Microsoft 托管桌面处理这些实体以提供服务:Microsoft Managed Desktop processes these entities to provide the service:

  • 设备数据Device data
  • 设备安全设置Device security settings
  • 设备操作系统和硬件Device operating system and hardware
  • 有关设备运行状况的聚合信息Aggregated information about device health
  • 设备诊断信息Device diagnostic information
  • 租户数据Tenant data
  • Azure Active Directory 资源Azure Active Directory resources
  • 策略和配置数据Policy and configuration data
  • Microsoft Defender for Endpoint 元数据和警报数据Microsoft Defender for Endpoint metadata and alert data
  • Windows 诊断数据Windows diagnostic data
  • 产品或服务使用情况数据Product and service usage data

Microsoft Azure Active DirectoryMicrosoft Azure Active Directory

Microsoft 托管桌面使用的标识数据由 Azure Active Directory 存储在地理位置中,该地理位置基于组织在订阅 Microsoft 在线服务(如 Office 365 或 Azure)时提供的地址。Identity data used by Microsoft Managed Desktop is stored by Azure Active Directory in a geographical location based on the address provided by the organization when subscribing for a Microsoft online service such as Office 365 or Azure. 有关显示 Azure Active Directory 数据中心的地图,请参阅 Microsoft Azure—我的 客户数据在哪里?See Microsoft Azure—Where is my customer data? for a map showing the datacenters for Azure Active Directory.

有关 Azure 用于数据存储的区域详细信息,请参阅 Azure Active Directory–你的数据所在的位置For more information about the regions Azure uses for data storage, see Azure Active Directory–Where is your data located.

Microsoft IntuneMicrosoft Intune

Intune 数据存储在几个不同的区域,例如,欧洲北部和爱尔兰 (和) 西 (荷兰) 。Intune data can be stored in a few different regions, such as Europe North (Ireland) and Europe West (Netherlands). IT 管理员创建租户帐户,并选择在最初在 Intune 服务中注册时存储数据的国家/地区。Your IT administrator creates a tenant account and chooses the country where data will be stored when they initially enroll in Intune services. 有关 Intune 使用的数据中心位置的列表,请参阅Microsoft Intune-我的客户数据在哪里?。For a list of datacenter locations used by Intune, see Microsoft Intune—Where is my customer data?. 有关数据存储和 Intune 使用的信息,请参阅 Intune 中的数据收集For more information about data storage and use by Intune, see Data collection in Intune.

Microsoft Defender for EndpointMicrosoft Defender for Endpoint

Microsoft Defender for Endpoint 数据存储在几个不同的区域。Microsoft Defender for Endpoint data can be stored in a few different regions. 因此,Defender for Endpoint 在欧盟、英国和美国 Microsoft Azure 数据中心中运行,如 Microsoft Defender for Endpoint 数据存储位置 所规定For this reason, Defender for Endpoint operates in the Microsoft Azure datacenters in the European Union, the United Kingdom, and in the United States, as stated at Microsoft Defender for Endpoint—Data storage locations. 有关数据存储和 Defender for Endpoint 使用的信息,请参阅 Microsoft Defender for Endpoint 收集 哪些数据?For more information about data storage and use by Defender for Endpoint, see What data does Microsoft Defender for Endpoint collect?

Windows 10Windows 10

Microsoft隐私声明所规定,"Microsoft 收集的个人数据可能在你地区、美国以及 Microsoft 或其关联公司、子公司或服务提供商运营设施的任何其他国家/地区进行存储和处理。As stated in the Microsoft Privacy Statement, “personal data collected by Microsoft may be stored and processed in your region, in the United States, and in any other country where Microsoft or its affiliates, subsidiaries, or service providers operate facilities. [...]通常,主存储位置位于客户区域或美国,通常具有对另一个地区的数据中心的备份。[…] Typically, the primary storage location is in the customer’s region or in the United States, often with a backup to a datacenter in another region. 选择 (存储) ,以便高效操作、提高性能以及创建冗余,以便防止发生中断或其他问题时保护数据。The storage location(s) are chosen in order to operate efficiently, to improve performance, and to create redundancies in order to protect the data if there is an outage or other problem. 我们采取措施以确保根据本隐私声明的规定以及无论数据位于何处的适用法律的要求处理我们根据本隐私声明收集的数据。"We take steps to ensure that the data we collect under this privacy statement is processed according to the provisions of this statement and the requirements of applicable law wherever the data is located.”

有关 Windows 10 的诊断数据收集详细信息,请参阅 Microsoft隐私声明的"我们存储并处理个人数据的位置"部分。For more information about the diagnostic data collection of Windows 10, see the "Where we store and process personal data" section of the Microsoft Privacy Statement.

数据访问保护Data access protection

通过多种方式限制直接访问 Microsoft 托管桌面的内部数据存储:Direct access to Microsoft Managed Desktop’s internal data stores is restricted in several ways:

  • 它需要工程领导级审批。It requires engineering lead level approval.
  • 它同时受到审核和时间限制。It is both audited and time limited.
  • 它需要使用高度安全且受限制的工作站。It requires the use of a highly secured and restricted workstation.
  • 所有数据在存储时都进行加密。All data is encrypted while it is stored.
  • 没有长期访问权限。There is no standing access.
  • 访问 Microsoft 托管桌面的内部管理门户需要高度安全且受限制的工作站。Access to Microsoft Managed Desktop’s internal management portal requires a highly secured and restricted workstation.

以合规方式处理个人数据Processing personal data in a compliant manner

Microsoft 托管桌面使用 ISO 认证的系统处理个人数据。Microsoft Managed Desktop processes personal data with ISO-certified systems. 有关详细信息,请参阅合规性。For more information, see Compliance.

分析和营销Profiling and marketing

Microsoft 托管桌面不会将收集的任何个人数据用作提供用于分析、广告或市场营销目的的服务的一部分。Microsoft Managed Desktop does not use any personal data collected as part of providing the service for profiling, advertising, or marketing purposes.

针对 GDPR 和 CCPA 的数据主体请求Data Subject Requests for the GDPR and CCPA

欧盟一般数据保护条例 (GDPR) 赋予《条例》中称为数据主体 () 的人管理由雇主或其他类型机构或组织收集的个人数据 (称为数据控制者或仅控制者) 。The European Union General Data Protection Regulation (GDPR) gives rights to people (known in the regulation as data subjects) to manage the personal data that has been collected by an employer or other type of agency or organization (known as the data controller or just controller). 根据 GDPR,个人数据的定义非常宽泛,即指与已识别或可识别的自然人相关的任何数据。Personal data is defined very broadly under the GDPR as any data that relates to an identified or identifiable natural person. GDPR 赋予数据主体对其个人数据的特定权利;这些权利包括,获取个人数据副本、请求更正个人数据、限制个人数据处理、删除个人数据,或接收能转移给另一个控制者的电子格式个人数据。The GDPR gives data subjects specific rights to their personal data; these rights include obtaining copies of personal data, requesting corrections to it, restricting the processing of it, deleting it, or receiving it in an electronic format so it can be moved to another controller. 数据主体向控制者发出的对其个人数据执行操作的正式请求,称为数据主体请求 (DSR)。A formal request by a data subject to a controller to take an action on their personal data is called a Data Subject Request or DSR.

同样,CCPA 向加州消费者提供隐私权利与义务,包括与 GDPR 的数据主体权利类似的权利,例如删除、访问和接收其 (可移植性) 的权利。Similarly, the CCPA provides privacy rights and obligations to California consumers, including rights similar to GDPR's Data Subject Rights, such as the right to delete, access, and receive (portability) their personal information. CCPA 还提供了某些披露、选择行使权利时防止泄露的防护,以及针对分类为"销售"的某些数据传输的"选择退出/选择加入"要求。The CCPA also provides for certain disclosures, protections against discrimination when electing exercise rights, and "opt-out / opt-in" requirements for certain data transfers classified as "sales". “出售”广义定义为包含共享数据来换取有值对价的行为。Sales are broadly defined to include the sharing of data for a valuable consideration. 有关 CCPA 的详细信息,请参阅加州消费者隐私法案加州消费者隐私法案常见问题解答For more information about the CCPA, see the California Consumer Privacy Act and the California Consumer Privacy Act FAQ.

下一节讨论 Microsoft 托管桌面如何帮助控制者查找、访问和操作 Microsoft 托管桌面使用的个人数据或个人信息。The following section discusses how Microsoft Managed Desktop helps controllers to find, access, and act on personal data or personal information used by Microsoft Managed Desktop.

备注

如果要查找有关 GDPR 的常规信息,请参阅服务信任门户 的 GDPR 部分。If you're looking for general information about the GDPR, see the GDPR section of the Service Trust Portal.

IT 管理员联系信息IT Admin contact information

租户管理员可以直接在 Microsoft 托管桌面门户的"管理员联系人" (查看、更正和删除自己的个人数据) 例如自己的联系人信息。A tenant administrator can view, correct, and delete their own personal data (such as their own contact information) directly in the Admin Contact section of the Microsoft Managed Desktop Portal.

Microsoft Defender for Endpoint 警报数据Microsoft Defender for Endpoint alert data

安全管理员可以请求提取或删除其环境中 Microsoft 托管桌面托管设备上与 Microsoft Defender for Endpoint 警报相关的个人数据。Security administrators can request an extraction or deletion of personal data related to Microsoft Defender for Endpoint alerts on a Microsoft Managed Desktop managed device in their environment. 安全管理员应登录到 Microsoft 托管桌面 管理门户并 提交支持请求。The security administrator should sign in to the Microsoft Managed Desktop Admin Portal and submit a support request. 选择 " 更改请求的支持请求类型"、"安全类别"和"其他"的子类别,然后在描述中提供相关设备名称以及提取或删除数据的请求。 Select Support request type of Change request, Category of Security, and Subcategory of Other, and then provide the relevant device names in the description along with your request for extraction or deletion of data.

除此之外,Microsoft 托管桌面不会自行收集个人数据。Aside from this, Microsoft Managed Desktop does not collect personal data on its own. 相反,它依赖于并使用其他 Microsoft Enterprise Online Services 收集的个人数据。Instead, it relies on and uses personal data that other Microsoft Enterprise Online Services collected. 希望响应其用户查看、更正和删除个人数据请求的 IT 管理员可以使用 Microsoft 托管桌面所依赖的基础服务各自的功能。IT Admins looking to respond to their user requests to view, correct, and delete their personal data can use the respective functionality of the underlying services that Microsoft Managed Desktop depends on. 如果你有兴趣查看或删除这些服务使用的个人数据,请首先参阅 适用于 GDPR 的 Azure 数据主体请求一文。If you are interested in viewing or deleting personal data used by these services, see the Azure Data Subject Requests for the GDPR article first.

此外,使用以下指南对 Microsoft 托管桌面所依赖的个人数据收集服务练习 DSR:Furthermore, use the following guidance to exercise DSRs for the services Microsoft Managed Desktop depends on for the collection of personal data: