The European Union’s data-protection watchdog says it still has concerns about the information Microsoft is collecting from users of its Windows 10 operating system.
The EU regulator sent Microsoft a letter a year ago raising concerns that the operating system didn’t give users enough information or control over what data was being scooped up and sent to the Redmond company’s servers.
Microsoft subsequently introduced an expanded settings menu that gives people installing the software more information on data privacy, but the EU’s Article 29 Working Party said last week that the changes don’t include enough disclosures to customers.
The group “remains concerned about the level of protection of users’ personal data,” Isabel Falque-Pierrotin, chair of the working party, said in a letter sent to Microsoft CEO Satya Nadella and company privacy czar Brendon Lynch. The regulator disclosed the letter Tuesday.
It is not clear, Falque-Pierrotin said, to what extent users will be informed about specific data Windows 10 collects. And the new settings leave much to be desired in their specificity, she said.
A Microsoft setting gives users the option to toggle from “full” telemetry data collection to a “basic” level, Falque-Pierrotin wrote. Microsoft’s explanation to users says that means the company will collect “less data,” without further explanation.
“Microsoft should clearly explain what kinds of personal data are processed for what purposes,” the letter said. “Without such information, consent cannot be informed, and therefore, not valid.”
In a statement Tuesday, Microsoft said it was listening carefully to comments from the EU and “will continue to cooperate with the Working Party and national data-protection agencies.”
The statement said Microsoft’s views on protection of user data in Windows 10 were contained in a blog post published in January by Microsoft Windows and Devices chief Terry Myerson. Myerson, outlining coming changes to the operating system’s data-notification settings, said the company…