-
April 19, 2026
v1
medium
Microsoft modified its data retention policy language on April 19, 2026. Previously, the policy described specific retention criteria including whether customers expected data to be retained until they removed it, and whether automated deletion controls existed. The updated language simplifies retention guidance by stating that Microsoft retains personal data to provide services, fulfill transactions, and for legitimate purposes including legal obligations, business operations, and dispute resolution. The revised policy removes granular examples (like email deletion procedures) and instead directs users to product documentation, while adding new retention justifications around improving products, protecting systems, and customer safety.
df6d59073298…
-
April 8, 2026
v1
low
Microsoft's Privacy Statement was updated on April 8, 2026, with 2 sentences added, 11 sentences removed, and 10 sentences modified. The document previously contained specific language across these sections that has now been condensed or reworded. Without access to the specific sentence-level diffs, the precise operational changes cannot be determined from this summary alone, though the net reduction in removal count suggests consolidation or simplification of certain privacy disclosures.
1f110e571113…
-
April 1, 2026
v1
medium
Microsoft revised its data retention policy language on April 1, 2026. Previously, the policy outlined specific retention criteria including whether customers expected data retention until deletion, whether automated deletion controls existed, and whether data was sensitive in type. The updated terms consolidate retention rationale into a broader set of purposes: operating the business, meeting contractual and legal obligations, improving products and services, protecting system and customer safety, and resolving disputes. The policy now directs users to product documentation for specific retention periods rather than describing retention criteria in the main policy.
+1 added
· -11 removed
· 9 modified
9747780db971…
-
March 13, 2026
v1
medium
Microsoft updated its Privacy Statement in March 2026 with two substantive changes: removal of language describing additional rights for European Economic Area users, and addition of language authorizing contact via auto-dialer and prerecorded voice for marketing purposes if users consent to phone communication. The removal of EEA-specific rights language represents a narrowing of stated protections in that region, while the marketing contact provision establishes explicit permission to use automated calling technology.
+1 added
· -2 removed
· 1 modified
b00f93e97712…
-
March 5, 2026
v1
low
Microsoft added two sentences to its Privacy Statement on March 5, 2026, stating that it has updated its data retention policy to reflect new regulatory requirements effective March 2026, and that users in the European Economic Area will have additional rights under this updated policy. The updated language does not specify what those additional rights are, what the retention policy changes entail, or how they differ from prior practice. This represents a disclosure of policy change rather than a detailed operational modification.
+2 added
264252a127ed…
-
March 5, 2026
v1
low
Microsoft removed two sentences from its Privacy Statement on March 5, 2026. Without access to the specific sentences that were deleted, the operational impact cannot be determined from the change summary alone. The removal may affect disclosures, procedures, or commitments previously described in the policy, but the substance of what was removed is not specified in the detected change.
…
-
March 5, 2026
v1
medium
Initial snapshot — monitoring begins
b8c5474c7d08…