面向 MyAnalytics 管理员的隐私指南Privacy guide for MyAnalytics admins

通过使用 Office 365 中从日常工作生成的数据,MyAnalytics 可帮助人们了解他们如何分配工作时间以及与谁展开协作,然后提供有关如何更智能地工作的智能提示。By using data generated from everyday work in Office 365, MyAnalytics helps people understand how they spend their limited time and who they spend it with, and then presents intelligent tips on how to work smarter.

本页面回答了有关 MyAnalytics 如何以一种保护员工隐私和支持遵守本地法规(如一般数据保护条例 (GDPR))的方式来处理信息的关键问题。This page answers key questions on how MyAnalytics processes information in a manner that protects employee privacy and supports compliance with local regulations, such as General Data Protection Regulation (GDPR).

要点摘要Summary of key points

  • MyAnalytics 并不旨在启用员工评估、跟踪、自动决策、分析或监视MyAnalytics is not designed to enable employee evaluation, tracking, automated decision-making, profiling, or monitoring. MyAnalytics 通过个性化仪表板、每周摘要、Insights Outlook 加载项和 Outlook 中的内联建议为个人提供见解。MyAnalytics provides insights to individuals through a personalized dashboard, a weekly digest, an Insights Outlook add-in, and inline suggestions in Outlook. MyAnalytics 没有任何机制或选项来允许除用户之外的任何人访问通过这些界面显示的个性化信息,除非该人员专门并单独共享该信息。MyAnalytics has no mechanism or option that allows anyone but the user to access the personalized information that is displayed through these surfaces, unless that person purposefully and independently shares that information. MyAnalytics 提供的见解无法用于自动决策或分析。Insights provided by MyAnalytics cannot be used for automated decision-making or for profiling.

  • MyAnalytics 不会为员工提供对有关其他同事的新个人身份信息的访问权限MyAnalytics does not give employees access to new personally-identifiable information on other coworkers. MyAnalytics 通过对用户在工作时生成的信息执行计算来将数据转换为见解。MyAnalytics converts data into insights by performing calculations on information that people generate just by going about their work day. 员工在 MyAnalytics 中看到的大部分数据只是他们有权访问但在没有某些支持的情况下无法对其快速执行计算的信息聚合。The majority of the data that employees see in MyAnalytics is simply an aggregation of information to which they already have access, but that they wouldn’t be able to quickly perform calculations on without some support.

  • 处理 MyAnalytics 数据并将其存储在员工的 Exchange Online 邮箱中MyAnalytics data is processed and stored in the employee’s Exchange Online mailbox. MyAnalytics 处理来自以下源的数据:Exchange Online 电子邮件和日历数据、来自 Skype for Business 和 Teams 的聊天和呼叫信号,以及 Windows 10 应用程序活动历史记录——如果组织的 IT 管理员和个人都选择加入。MyAnalytics processes data from these sources: Exchange Online email and calendar data, chat and call signals from Skype for Business and from Teams, and—if both the organization's IT administrator and an individual opt in—Windows 10 application activity history. MyAnalytics 处理此数据并将其存储在每个员工的 Exchange Online 邮箱内。MyAnalytics stores and processes this data inside each employee’s Exchange Online mailbox.

  • MyAnalytics 支持一般数据保护条例 (GDPR) 合规性MyAnalytics supports General Data Protection Regulation (GDPR) compliance. Microsoft 已将 MyAnalytics 设计为满足客户对遵守 GDPR 要求的需求。Microsoft has designed MyAnalytics to support customers’ needs to comply with GDPR requirements.

  • 可对 MyAnalytics 进行配置,以便个人必须专门选择加入MyAnalytics can be configured so that individuals must purposefully opt in. 默认情况下,任何时候将 MyAnalytics 服务的许可证分配给某人时,该人员都会自动选择加入。By default, any time a license with the MyAnalytics service is assigned to a person, that person is automatically opted in. 但是,管理员可以将 MyAnalytics 配置为“默认关闭”,以便用户能够自行选择是否在分配许可证后选择加入。However, administrators can configure MyAnalytics to be "default off," so that people can choose for themselves whether to opt in after being assigned a license.

  • MyAnalytics 提醒用户其数据是安全的私有数据MyAnalytics reminds people that their data is private and secure. 将 MyAnalytics 服务的许可证分配给某人的几天后,该人员会收到一封欢迎电子邮件,它将明确说明 MyAnalytics 的工作原理,并提醒其所有数据都是私有数据。A few days after a license with the MyAnalytics service is assigned to a person, that person receives a welcome email that clearly lays out how MyAnalytics works, with a reminder that all of their data is private. 其他 MyAnalytics 用户界面(如每周摘要和个人仪表板)将强调这一信息。The other MyAnalytics user interfaces, such as the weekly digest and personal dashboard, reinforce this message.

MyAnalytics 的工作原理How MyAnalytics works

MyAnalytics 采用以下方式展现见解:MyAnalytics presents insights in the following ways:

  1. 个人仪表板Personal dashboard

  2. Insights Outlook 加载项Insights Outlook add-in

  3. 每周摘要Weekly digest

  4. Outlook 中的内联建议Inline suggestions in Outlook

MyAnalytics 提供了以下类型的数据的见解。MyAnalytics provides insights with the following types of data.

  1. 邮箱数据:用户使用 Office 365 生成的电子邮件、日历、聊天和通话活动,例如在向特定人员或组发送的会议或电子邮件上所花的时间。Mailbox data: Email, calendar, chat, and call activity that people generate by using Office 365, such as time spent in meetings or emails sent to a specific person or group.

  2. Windows 10 活动历史记录数据: 用户在其设备上使用应用和服务的数据:无论他们是否处理了文档,还是他们是否浏览了 Web。Windows 10 activity history data: Data on people's usage of apps and services on their device: whether they worked on a document and whether they browsed the web.

  3. 增量数据: 员工无法使用但将以一种旨在保护个人隐私的聚合形式呈现的数据。Incremental data: Data that would otherwise be unavailable to the employee but is presented in an aggregated form designed to protect individual privacy.

邮箱数据Mailbox data

邮箱数据表示用户只需工作(如发送电子邮件、安排会议或与同事聊天)即有权访问的信息。Mailbox data represents information that people already have access to simply by going about their job, such as sending emails, arranging meetings, or chatting with coworkers. MyAnalytics 处理此信息并以使其可操作的新方式显示。MyAnalytics processes and displays this information in new ways that make it actionable.

例如,MyAnalytics 提供了可用于快速了解用户每天在会议和电子邮件上所花的时间、谁与他们合作最多、谁与其失去联系以及已对谁做出承诺和请求的视图。For example, MyAnalytics provides views that allow people to quickly understand how much time they spend in meetings, and in email every day, who they collaborate with the most, who they are losing touch with, and to whom they have made commitments and requests.

用户可以对此信息执行操作。People can take action on this information. 例如,他们可能觉得在会议上花费了太多时间,因此采用运行更高效会议的个人目标。They might decide that they spend too much time in meetings, for example, and adopt a personal goal of running more efficient meetings.

这些见解来源于以下位置中已可供用户使用的数据:These insights are derived from data that is already available to people in the following places:

  • Exchange Online 邮箱their Exchange Online mailbox
  • 他们在 OneDrive 和 SharePoint 文档中的活动their activity in OneDrive and SharePoint documents
  • 来自团队和 Skype for Business 的聊天和呼叫历史记录their chat and call history from Teams and from Skype for Business

MyAnalytics 简单地应用一些基本计算和规则,使此数据更易操作。MyAnalytics simply applies some basic calculations and rules to make this data more actionable. 邮箱数据直接存储在每个员工的 Exchange Online 邮箱中。Mailbox data is stored directly in each employee's Exchange Online mailbox.

例如,如果用户想要确定哪些同事在过去一周内向其发送了最多的电子邮件,则无需在收件箱中手动对来自同事的电子邮件进行计数,即可使用 MyAnalytics 从技术上实现此目的。For example, if people want to determine which colleagues sent them the most email over the past week, they could technically do so without MyAnalytics by manually counting emails from coworkers in their inbox. 同样,用户可以通过使用邮箱中随时可用的时间戳信息来确定同事对其发送的电子邮件的平均响应时间。Similarly, people could determine their coworkers’ average response time to the emails that they send by using timestamp information readily available in their mailbox. 使用 MyAnalytics,就不必执行这些繁琐的计算。MyAnalytics saves people the trouble of having to perform these tedious calculations.

Windows 10 活动历史记录数据Windows 10 Activity History data

Windows 10 活动历史记录数据是指用户对设备执行的操作,例如用户使用的应用和服务、是否处理了文档,以及是否浏览了 Web。Windows 10 activity history data refers to the things people do on their device, such as the apps and services they used, whether they worked on a document, and whether they browsed the web. 活动历史记录本地存储在设备上,如果员工使用 Microsoft 帐户登录到设备并授予权限,则 Windows 会将活动历史记录发送到 Microsoft。The activity history is stored locally on the device, and if the employee is signed in to the device with a Microsoft account and gives permission, Windows sends the activity history to Microsoft.

MyAnalytics 使用 Windows 10 活动历史记录数据计算有关用户的工作习惯的见解(例如,在应用、会议中的多任务处理上所花的时间)。MyAnalytics uses Windows 10 activity history data to compute insights (for example, time spent in apps, multi-tasking in meetings) about a person's work habits. 这些见解是私有的,并存储在用户的 Exchange Online 邮箱中。These insights are private and stored in the person's Exchange Online mailbox.

另请注意,如果用户选择将 Windows 10 活动历史记录发送到 MyAnalytics,则即使他们使用非工作或非学校帐户(例如,个人 live.com 或 facebook.com 帐户)连接到应用或服务,也会保存活动数据。Also note that, if the person chooses to send Windows 10 activity history to MyAnalytics,  activity data is saved even if they use a non-work or non-school account (for example, a personal live.com or facebook.com account) to connect to the app or service. 但是,在使用 Microsoft Edge Web 浏览器中的 InPrivate 选项卡或窗口进行浏览时,不会保存活动数据。However, activity data is not saved when they browse with InPrivate tabs or windows in the Microsoft Edge web browser.

增量数据Incremental data

在某些情况下,MyAnalytics 将为用户提供有关其他人员不可用的被取消标识的信息(例如,电子邮件阅读率)。In a few cases, MyAnalytics provides people with de-identified information on other people that would not have otherwise been available to them, such as for Email read rates.

电子邮件阅读率Email read rates

MyAnalytics 将跟踪(在 Outlook 加载项中)已打开电子邮件(该邮件已发送给五个人或更多人)的收件人的百分比。MyAnalytics tracks the percentage of recipients who opened an email message (in the Outlook add-in) for email that a person sends to five or more people.

但是,若要保留隐私,MyAnalytics 不会跟踪发送给少于五个人的邮件的阅读率。However, to preserve privacy, MyAnalytics does not track read rates for messages sent to fewer than five people. 此外,MyAnalytics 不会显示 0% 或 100% 的阅读率,因为这样会让用户对单个同事操作作出明确的结论。Also, MyAnalytics does not show read rates of 0% or 100%, as that would allow people to make definitive conclusions about individual coworker actions. 相反,阅读率呈现为“低”或“高”。Instead, the read rate renders as "Low" or "High."

此指标是基于 Exchange Online 中的“已读”标志计算的。This metric is calculated based on the "read" flag in Exchange Online. 对于某些用户,在 Outlook 预览窗格中打开邮件时,邮件标记为“已读”。For some people, messages are flagged as "read" when they open a message in the Outlook preview pane. 对于其他用户,可能需要双击打开邮件,将其标记为“已读”。For others, they might need to double-click to open the message to mark it as "read."

用户可以在 Outlook 设置中控制此设置。People can control this setting in their Outlook settings. 若要在发件人的邮箱中显示这些信号,请在 Office 365 环境中复制“已读”标志,然后将其发送到发件人的邮箱。To show these signals in the sender’s mailbox, the “read” flag is copied within the Office 365 environment, and then delivered to the sender’s mailbox.

隐私设置Privacy settings

MyAnalytics 提供了灵活且可配置的控件,旨在使组织及其成员能够满足有关隐私和员工数据使用的各种法律和政策要求。MyAnalytics provides flexible and configurable controls that are designed to enable organizations and their members to address varying legal and policy needs regarding privacy and use of employee data. 为组织启用 MyAnalytics 时,管理员可进行以下选择:When enabling MyAnalytics for the organization, admins can make the following choices:

  • 确定谁有权访问 MyAnalytics 管理员可通过向仅应具有访问权限的人员颁发许可证来确定可以访问和使用 MyAnalytics 的人员。Determine which people have access to MyAnalytics Admins can determine which people can access and use MyAnalytics by issuing licenses to only those people who should have access.

  • 确定默认的选择加入设置 管理员可以将 MyAnalytics 配置为“默认关闭”,这意味着获得许可的员工必须单独选择加入 MyAnalytics,以获取对其仪表板和 Outlook 加载项的访问权限,并贡献增量数据。Determine default opt-in settings Admins can configure MyAnalytics to be "default off," which means that licensed employees must individually opt in to MyAnalytics to gain access to their dashboard and Outlook add-in and to contribute to incremental data. 或者,也可以将 MyAnalytics 配置为“默认开启”,这意味着获得许可的员工将自动贡献增量数据并获得对其仪表板和 Outlook 加载项的访问权限,但随后可通过“设置”菜单选择退出。Alternatively, MyAnalytics can be configured to be "default on," which means that licensed employees automatically contribute to incremental data and have access to their dashboard and to the Outlook add-in, but can subsequently opt out through the Settings menu. 若要了解详细信息,请参阅 配置用户设置To learn more, see Configure user settings.

  • 确定员工是否可以选择加入以接收有关 Windows 10 应用程序使用情况的见解 在 MyAnalytics 用户选择加入以接收从 Windows 10 活动历史记录数据派生的见解之前,必须征得管理员的同意。Determine whether employees can opt-in to receive insights on Windows 10 application usage Admins must consent before MyAnalytics users can opt in to receive insights derived from Windows 10 activity history data.

  • 确定应从增量数据中排除哪些担任敏感角色的员工 某些组织可能有担任敏感角色的员工,他们永远不应该贡献增量数据。Determine which employees in sensitive roles should be excluded from incremental data Some organizations may have employees in sensitive roles who should never contribute to incremental data. 为此,MyAnalytics 为管理员提供了将这些人标记为“已排除”的功能。To support this, MyAnalytics provides admins with the ability to mark these people as “excluded.” 排除的用户不能选择加入来贡献增量数据。Excluded users cannot opt in to contribute to incremental data. 但是,如果这些用户已获得许可,则仍可以获得 MyAnalytics 体验。However, the MyAnalytics experience will still be available to these users provided that they are licensed.

请注意,如果使用默认设置,则以下内容适用:Note that if default settings are used, the following applies:

  • 无论是否已获得 MyAnalytics 服务的许可证,组织中的所有员工都会贡献增量数据All employees in your organization contribute to incremental data whether or not they have been issued licenses with the MyAnalytics service.

  • 向员工分配许可证后,将自动为其启用 MyAnalytics。MyAnalytics is automatically enabled for employees after a license is assigned to them. 相反,如果想让获得许可的员工有权选择加入,则必须更改默认设置。If, instead, you want licensed employees to have the choice to opt in, you must change the default settings.

员工如何选择加入和选择退出How employees can opt-in and opt-out

最终用户可以通过 Office 365 中的 " 功能设置 " 菜单选择加入或选择退出 MyAnalytics,如下所示:End users can opt-in or opt-out of MyAnalytics via the Feature settings menu in Office 365, as shown here:

电子邮件阅读率

Microsoft GraphMicrosoft Graph

MyAnalytics 是基于 Microsoft Graph 构建的第一方应用程序。MyAnalytics is a first-party application that's built on Microsoft Graph. Microsoft Graph 包含一组基于 REST 的 API 调用,允许开发人员与指定组织使用的 Microsoft 技术进行交互。Microsoft Graph consists of a set of REST-based API calls that allow developers to interact with the Microsoft technologies that a given organization uses. 若要使用这些 API 调用,开发人员必须具有特定权限才能访问其请求的任何数据。In order to use these API calls, developers must have specific permissions to access any data they request. 管理员控制任何 Microsoft Graph 应用程序的部署以及对这些应用程序的访问权限。Administrators control both the deployment of any Microsoft Graph application and permissions to access these applications.

无法通过 Office 365 管理中心全局打开或关闭 Microsoft Graph,但是管理员可通过阻止员工安装第三方应用或限制开发人员访问权限来实现这一点。The Microsoft Graph cannot be turned on or off globally through the Office 365 Admin Center, but administrators can achieve this effect by blocking employees’ ability to install third-party apps or by restricting developer access permissions. 了解有关 Microsoft Graph 的详细信息。Learn more about Microsoft Graph.

员工的 MyAnalytics 体验Employee experience of MyAnalytics

仪表板和 Outlook 加载项Dashboard and Outlook add-in

将 MyAnalytics 服务的许可证分配给员工后的几天之内——作为整个 Microsoft 365 Enterprise 许可证的一部分或作为附加许可证,用户的MyAnalytics 仪表板Outlook 加载项将变得可用。Within a few days of the assignment of a license with the MyAnalytics service to an employee—either as part of an overall Microsoft 365 Enterprise license or as an add-on license—the user’s MyAnalytics dashboard and Outlook Add-in become available.

欢迎电子邮件Welcome email

为了通知员工已启用仪表板和 Outlook 加载项,MyAnalytics 将在分配许可证后的几天内发送欢迎电子邮件To notify employees that their dashboard and Outlook add-in have been enabled, MyAnalytics delivers a welcome email within a few days of license assignment. 该电子邮件将向用户介绍此应用程序,并提醒他们 MyAnalytics 是私人和个人服务。The email introduces people to the application and has a reminder that MyAnalytics is private and personal.

每周摘要Weekly digest

在发送欢迎电子邮件的一周后,用户将开始接收每周摘要The week after the welcome email is delivered, users begin to receive the weekly digest.

GDPR 合规性GDPR Compliance

与完整的 Office 365 套件一样,MyAnalytics 有助于支持遵守 GDPR 要求。As is the case with the full Office 365 suite, MyAnalytics helps support compliance with GDPR requirements. Microsoft 帮助数据控制者履行 MyAnalytics 的以下义务:Microsoft helps data controllers meet the following obligations for MyAnalytics:

  1. 保护用户的个人数据Secure and protect personal data of users. 所有 MyAnalytics 数据都存储在员工的 Exchange Online 邮箱中。All MyAnalytics data is stored in the employees’ Exchange Online mailbox. MyAnalytics 会将计算后的指标(如“会议时间”)附加到邮箱。MyAnalytics appends computed metrics such as “Meeting hours” to the mailbox. 因此,MyAnalytics 通过 Exchange Online 履行了这一义务,同时还履行了以下义务:Thus, MyAnalytics meets this obligation by virtue of Exchange Online also meeting the obligation:

    • Microsoft 不会在 Exchange Online 中挖掘客户数据来做广告。Microsoft will not mine customer data in Exchange Online for advertising.
    • Microsoft 不会主动向执法机构披露 Exchange Online 客户数据。Microsoft will not voluntarily disclose Exchange Online customer data to law enforcement agencies.
    • Microsoft 将满足与 Exchange Online 数据加密有关的所有要求,并实施相关控件来降低安全风险并帮助确保业务连续性,如 ISO 27001 和 27018 中所述。Microsoft will meet all requirements related to encryption of Exchange Online data and implement controls to reduce security risks and help ensure business continuity, as described in ISO 27001 and 27018.
  2. 检测到泄露时通知用户Notify users in the event that a breach is detected. Microsoft 将在发现泄露后的 72 小时内通过使用 Office 365 事件响应标准操作程序通知客户隐私联系人。Microsoft will notify customer privacy contacts within 72 hours of Microsoft becoming aware of a breach by using Office 365 incident response standard operating procedures.

  3. 接受对导出、删除或限制处理个人数据的用户请求 (DSR)Honor user requests (DSRs) to export, delete, or restrict processing personal data. Microsoft 支持你通过以下方式接受用户请求:Microsoft supports your need to honor user requests in the following ways:

    • 数据导出请求:通过 Microsoft 服务信任门户提交数据导出请求。Data export requests: submit data export requests via the Microsoft Service Trust Portal. 此外,用户还可以获取其 MyAnalytics 仪表板的屏幕截图。Separately, people can also take screenshots of their MyAnalytics dashboards.
    • 请求限制处理:Request to restrict processing:
      • 使用 PowerShell 从 MyAnalytics 中选择员工Use PowerShell to opt employees out of MyAnalytics
      • 删除员工数据:登录到 Azure Active Directory 管理中心 ,然后通过用户管理门户删除员工的数据。Delete employee data: sign in to Azure Active Directory admin center and then remove the employee's data through the User Management Portal.

若要了解详细信息,请参阅 GDPR 合规性To learn more, see GDPR compliance.