SQL Server 隐私补充SQL Server privacy supplement

适用于:Applies to: 是SQL ServerSQL Server(所有支持的版本)yesSQL ServerSQL Server (all supported versions) 适用于:Applies to: 是SQL ServerSQL Server(所有支持的版本)yesSQL ServerSQL Server (all supported versions)

本文总结了已启用 Internet 的功能,这些功能可收集并向 Microsoft 发送匿名功能使用情况和诊断数据。This article summarizes Internet-enabled features that can collect and send anonymous feature usage and diagnostic data to Microsoft. SQL Server 可能会收集标准计算机信息,并可能会将有关使用情况和性能的数据传输给 Microsoft 进行分析,以便改进产品的质量、安全性和可靠性。SQL Server may collect standard computer information and data about usage and performance may be transmitted to Microsoft and analyzed for purposes of improving the quality, security, and reliability of the product. 如果在 Microsoft Azure 服务上的虚拟机中安装了 SQL Server,则会将环境信息发送到 Microsoft,以便 Microsoft 可以在虚拟机上安装 SQL Server IaaS 代理扩展,并使用 SQL VM 资源提供程序注册 SQL 虚拟机资源,如此处所述。If you install SQL Server in a virtual machine on the Microsoft Azure service, environment information may be sent to Microsoft so that Microsoft can install the SQL Server IaaS Agent Extension on your virtual machine and register your SQL virtual machine resource with the SQL VM resource provider, as described here.

本文用作整个 Microsoft 隐私声明的附录。This article serves as an addendum to the overall Microsoft Privacy Statement. 本文中的数据分类仅适用于 SQL Server 本地产品版本。The data classification in this article only applies to versions of the SQL Server on-premises product. 它不适用于:It does not apply to the items:

“允许的使用方案”定义。Definition of Permitted usage Scenarios. 在本文的上下文中,Microsoft 将“允许的使用方案”定义为由 Microsoft 启动的操作或活动。For the context of this article, Microsoft defines "Permitted Usages Scenarios" as actions or activities that are initiated by Microsoft.

访问控制Access control

使用凭据相关的信息在安装 SQL Server 期间对登录、用户或帐户进行保护。Credential-related information used to secure logins, users, or accounts within a SQL Server installation.

访问控制示例Examples of access control

  • 密码Passwords
  • 证书Certificates

允许的使用方案Permitted usage scenarios

方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
这些凭据通过使用情况和诊断数据始终保留在用户计算机上。These credentials never leave the user machine via Usage and Diagnostics Data. - -
故障转储可以包含访问控制数据。Crash Dumps may contain Access Control Data. - 故障转储:最长 30 天。Crash Dumps: Maximum 30 days.
这些凭据通过用户反馈始终保留在用户计算机上(除非客户手动插入)These credentials never leave the user machine via User Feedback unless customer injects it manually 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal use with no third-party access. 用户反馈:最长 1 年User Feedback: Max 1 year
     

客户数据Customer data

根据定义,客户数据是指直接或间接存储在用户表中的数据。Customer data is defined as data stored within user tables, directly or indirectly. 该数据包括可能存储在用户表中的统计信息或查询文本中的用户文本。The data includes statistics or user literals within query texts that might be stored within user tables.

客户数据示例Examples of customer data

  • 存储在任何用户表内各行中的数据值。Data values stored within the rows of any user table.
  • 包含任何用户表内各行中值的副本的统计信息对象。Statistics objects containing copies of values within the rows of any user table.
  • 包含文本值的查询文本。Query texts containing literal values.

允许的使用方案Permitted usage scenarios

方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
此数据通过使用情况和诊断数据保留在用户计算机上。This data does not leave the user machine via Usage and Diagnostics Data. - -
故障转储可以包含客户数据,并可以发送至 Microsoft。Crash Dumps may contain customer data and be emitted to Microsoft. - 故障转储:最长 30 天。Crash Dumps: Max 30 days.
客户可自愿向 Microsoft 发送包含客户数据的用户反馈。Customers with their consent can send User Feedback that contains customer data to Microsoft. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal with no third-party access. Microsoft 可向原始客户公开数据。Microsoft can expose the data to the original customer. 用户反馈:最长 1 年User Feedback: Max 1 year

个人数据Personal data

从用户处接收的数据,或通过使用产品生成的数据。Data received from a user, or generated from their use of the product.

  • 对单个用户可链接。Linkable to an individual user.
  • 不包含客户数据。Does not contain customer data.

个人数据示例Examples of personal data

  • 接口标识。Interface Identification. 完整的 IP 地址The Full IP address
  • 计算机名称Machine Name
  • 登录名/用户名Login/User names
  • 电子邮件地址的本地部分 (joe@contoso.com)Local-part of e-mail address (joe@contoso.com)
  • 位置信息Location Information
  • 客户标识Customer Identification

允许的使用方案Permitted usage scenarios

方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
此数据通过使用情况和诊断数据保留在用户计算机上。This data does not leave the user machine via Usage and Diagnostics Data. - -
故障转储可以包含个人数据,并可以发送至 Microsoft。Crash dumps may contain personal data and be emitted to Microsoft. - 故障转储:最长 30 天Crash dumps: Max 30 days
客户标识 ID 可发送至 Microsoft,用于传递用户订阅的新混合和云功能。Customer identification ID may be emitted to Microsoft to deliver new hybrid and cloud features that the users have subscribed to. - 当前不提供此类混合或云功能。Currently no such hybrid or cloud features exist.
客户可自愿向 Microsoft 发送包含客户数据的用户反馈。Customers with their consent can send User Feedback that contains customer data to Microsoft. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal use with no third-party access. Microsoft 可向原始客户公开数据。Microsoft can expose the data to the original customer. 用户反馈:最长 1 年User feedback: Max 1 year

基于 Internet 的服务数据Internet-based services data

提供基于 Internet 的服务所需的数据(基于 SQL Server EULA)。Data needed to provide Internet-based services, per the SQL Server EULA.

基于 Internet 的服务数据示例Examples of Internet-based services data

  • 计算机规范信息Computer specification information
  • 浏览器名称/版本Browser name/version
  • SQL Server 版本SQL Server version
  • 语言代码Language code
  • 删除了特定八进制数的 IP 地址An IP address with certain octets removed
  • 地图数据Map data

允许的使用方案Permitted usage scenarios

方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
Microsoft 可以使用该数据来优化功能和/或修复当前功能中的 bug。May be used by Microsoft to improve features and/or fix bugs in current features. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal use with no third-party access. Microsoft 可向原始客户公开数据。Microsoft can expose the data to the original customer. 例如,仪表板For example, dashboards 最短 90 天 - 最长 3 年Min 90 days - Max 3 years
客户可自愿向 Microsoft 发送包含客户数据的用户反馈。Customers with their consent can send User Feedback that contains customer data to Microsoft. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal use with no third-party access. 客户可自愿向 Microsoft 发送包含客户数据的用户反馈。Customers with their consent can send User Feedback that contains customer data to Microsoft.
Power View 和 SQL Server Reporting Services 地图项可发送数据供必应地图使用。Power View and SQL Reporting Services Map Item(s) may send data for use of Bing Maps. 仅限会话数据Limit to session data -

非个人数据Non-personal data

  1. 从组织处接收的数据,或通过使用产品生成的数据。Data received from an organization, or generated from their use of the product. 它可与组织链接,并且不包含客户数据。It is linkable to an organization and does not contain customer data.

    • 示例Example

      • 组织名称(例如:Microsoft Corp.)Organization name (example: Microsoft Corp.)
    • 允许的使用方案Permitted usage scenarios

      方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
      Microsoft 可能会收集 Azure 虚拟机中运行的 SQL Server 实例的一般使用情况数据,其明确目的是为客户提供在 Azure 虚拟机中使用 SQL Server 所需的 Azure 可选权益。Microsoft may collect generic usage data of SQL Server instances running in Azure Virtual Machines for the express purpose of giving customers optional benefits within Azure for using SQL Server within Azure Virtual Machines. Microsoft 可以向客户公开数据,例如通过 Azure 门户,从而帮助在 Azure 虚拟机中运行 SQL Server 的客户访问特定用于在 Azure 中运行 SQL Server 的权益。Microsoft can expose data to the customer, such as through the Azure portal, to help customers running SQL Server in Azure Virtual Machines to access benefits specific to running SQL Server in Azure.
      未经客户事先同意,Microsoft 不会将此数据用于授权审核。Microsoft will not use this data for licensing audits without customer's advance consent.
      最短 90 天 - 最长 3 年Min 90 days - Max 3 years
  2. 本文中介绍的数据,或用于配置服务器、数据库、表以及由客户创建或提供的其他资源的数据。Data that describes or is used to configure servers, databases, tables, and other resources created or provided by customers. 它包括数据库表和列名称,但不包括数据库各行的内容或其他客户数据。It includes database table and column names but not the contents of database rows or other customer data. 客户不应将任何个人数据存储在这些字段中,也不应创建旨在将个人数据存储到这些字段的应用程序。Customers should not place any personal data in those fields or create applications designed to store personal data in these fields. 对于以下允许的应用场景,只使用哈希格式来确定使用模式,从而改进产品。For the permitted usage scenarios below, only hash form is used to determine usage patterns to improve the product.

    • 示例Example

      • SQL Server 数据库名称SQL Server database names
      • 表名称和列名称Table names and column names
      • 统计信息名称Statistics names
    • 允许的使用方案Permitted usage scenarios

      备注

      所有元数据值在收集之前都会经过哈希处理。All metadata values are hashed before collection.

      方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
      Microsoft 可能使用它来优化功能,并/或修复当前功能中的 bug。May be used by Microsoft to improve features and or fix bugs in current features. 仅限 Microsoft 内部使用,不允许第三方访问。Limited to Microsoft internal use with no third-party access. 最短 90 天 - 最长 3 年Min 90 days - Max 3 years
  3. 运行服务器期间生成的数据。Data that is generated in the course of running the server. 它不包含客户数据、It does not contain customer data, non-personal data as listed in 1. 1 或 2 中(上文)列出的非个人数据、or 2. 客户访问控制数据或个人数据。(above), customer access control data, or personal data.

    • 示例Example
      • 数据库 GUIDDatabase GUID
      • 计算机名称的哈希Hash of machine name
      • 实例名称的哈希Hash of instance name
      • 应用程序名称Application name
      • 行为/使用情况数据Behavioral/usage data
      • SQL 客户体验改善计划数据 (SQLCEIP)SQL Customer Experience improvement program data (SQLCEIP)
      • 服务器配置数据,例如 sp_configure 的设置Server configuration data, for example settings of sp_configure
      • 功能配置数据Feature configuration data
      • 事件名称和错误代码Event names and error codes
      • 硬件设置和 OEM 制造商等标识Hardware settings and identification such as OEM Manufacturer

    Microsoft does 会检查由使用 SQL Server 的其他程序设置的应用程序名称值(示例:SharePoint 或第三方打包程序,并在启用使用数据时,将此信息包含在发送给 Microsoft 的元数据字段中)。Microsoft does examine application name values set by other programs that use SQL Server (example: SharePoint or third-party packaged programs and includes this information in metadata fields sent to Microsoft when Usage Data is enabled). 客户不应将个人数据存储在这些元数据字段中,也不应创建旨在将个人数据存储到这些字段的应用程序。Customers should not place personal data in those metadata fields or create applications designed to store personal data in these fields.

    • 允许的使用方案Permitted usage scenarios

      方案Scenario 访问限制Access restrictions 保留期要求Retention requirements
      Microsoft 可能使用它来优化功能,并/或修复当前功能中的 bug。May be used by Microsoft to improve features and or fix bugs in current features. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal use with no third-party access. 最短 90 天 - 最长 3 年Min 90 days - Max 3 years
      可用于向客户提供建议。May be used to make suggestions to the customer. 例如,“根据产品的使用情况,建议使用功能 X,因为它性能更优良。”For example, "Based on your usage of the product, consider using feature X since it would perform better." 例如,Microsoft 可通过仪表板向原始客户公开该数据。Microsoft can expose the data to the original customer, for example through dashboards. 客户数据安全日志:最短 3 年 - 最长 6 年Customer Data Security Logs: Min 3 years - Max 6 years
      Microsoft 可使用该数据对未来产品进行规划。May be used by Microsoft for future product planning. Microsoft 可将此信息与其他硬件和软件供应商共享,以改善其产品在 Microsoft 软件中的运行性能。Microsoft may share this information with other hardware and software vendors to improve how their products run with Microsoft software. 最短 90 天 - 最长 3 年Min 90 days - Max 3 years
      根据所发送的使用情况和诊断数据,Microsoft 可使用该数据来提供基于云的服务。May be used by Microsoft to provide cloud-based services based on emitted Usage and Diagnostics Data. 例如,显示组织中所有 SQL Server 安装的功能使用情况的客户仪表板。For example, a customer dashboard showing feature usage across all SQL Server installations in an organization. Microsoft 可通过仪表板向原始客户公开该数据。Microsoft can expose the data to the original customer, for example, through dashboards. 最短 90 天 - 最长 3 年Min 90 days - Max 3 years
      客户可自愿向 Microsoft 发送包含客户数据的用户反馈。Customers with their consent can send User Feedback that contains customer data to Microsoft. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal with no third-party access. Microsoft 可向原始客户公开数据。Microsoft can expose the data to the original customer. 用户反馈:最长 1 年User Feedback: Max 1 year
      可使用数据库名称和应用程序名称将数据和应用程序归到已知的分类中,例如运行 Microsoft 提供的软件类别和运行其他公司提供的软件类别。May use database name and application name to categorize databases and applications into known categories, for example, those that may be running software provided by Microsoft or other companies. 仅限 Microsoft 内部使用,不允许第三方访问。Limit to Microsoft internal with no third-party access. 最短 90 天 - 最长 3 年Min 90 days - Max 3 years

系统生成的日志控制System generated logs controls

若要了解如何在产品中开启/关闭系统生成的日志,请参阅此处的为 SQL Server 配置使用和诊断数据收集 (CEIP)Instructions on how system generated logs can be turned on/off in product can be referenced here - Configure usage and diagnostic data collection for SQL Server (CEIP).

获取帮助