A few previous blogs/posts on Windows 10 privacy and security. Using collected data to enhance your on-line experience is not a bad thing, but you should be aware of the data collected, how it is used, and where it is stored. A few more items for your consideration:
Edge is getting better and the ability to store browsing history to speed searches, recall history, and other functions as a result is of some value. An issue is that that data is at the same vendor as Windows, OneDrive, Microsoft Store, etc. Consider using Brave or others as a browser for sensitive sites. Microsoft updates and other events may reset your default browser to Edge.
OneDrive is a feature handy for accessing data across devices. For this feature to work that data lives in the cloud. Any/Someone can call Microsoft and have your passphrase reset and thus access this data at OneDrive. OneDrive data is accessible to you, thus accessible to ransomware. OneDrive is a feature to use for multi-platform access, selective sharing, protection from accidental modifications, etc. Since the files and folders are in the cloud, use care with what data is entrusted to that cloud.
OneDrive is engrained in Windows. Using a Microsoft account to login enables OneDrive access.
To limit the files and folders stored at OneDrive go to Settings -> System -> Storage -> Change where new content is saved. Uninstalling OneDrive may cause problems, but disabling can be done by unchecking Start OneDrive automatically when I sign in to Windows. To stop OneDrive right click on the OneDrive icon in the system tray and use the Unlink this PC. OneDrive is a useful function, ensure the facilities of the function are as you intend.
Cortana. A lot of personal data is collected by the personal digital assistant - as it should be as a personal digital assistant. Again Cortana is engrained in Windows now. It is not easily removed or even deactivated. You can limit its use by right clicking on any blank space on the taskbar then check Hidden on Cortana. When you need to search for files, use File Explorer. To search for web sites, use your browsers.
Microsoft Account. Again cloud based and data is collected. Handy for collecting and using collected data to enhance the user experience. Not so for privacy. You can use both local accounts and the online services accounts. If you do not have local accounts it is not so easy to create now. Use Settings -> Accounts as an Administrator enabled username.
Note: In my experience using a NON Administrator account for day-to-day activity is the best method of reducing the chance for malware infection. See other Cyber Security SIG blog posts for further information.
Start -> Settings -> Family and other people -> Add someone else to this PC.
Then at the How will this person sign in? Select I don't have this person's sign-in information
On the next screen use the Add user without a Microsoft account. Fill in the username, password (passphrase) and click Next. Not an easy process. The local accounts will be able to login without a network connection and have less data collected in the Microsoft cloud.
Privacy options Start -> Settings ->Privacy
A lot of settings and thus control of your data here. Also the ability to clear the data collected for your on-line Microsoft account so far. Most of these settings will be a personal choice. The more important one is under Feedback and diagnostics in my opinion. I recommend using Basic. It is not possible to turn off everything Microsoft collects and sends to their servers. Turning off some settings may limit applications or cause applications to not behave as before. The stop getting to know me setting in Speech, inking, and typing is another personal choice. For more control of privacy options see the Cyber Security SIG blog post W10privacy application details.
Sync your settings Start -> Settings - Account allows your settings to be synced to other devices wit the same Microsoft on-line account. A useful feature for convenience, not so for privacy. In addition to being synced to other devices those settings are in the Microsoft cloud.
Privacy is a personal choice. Some of the above may not be your personal choice. Some may want to go even further with control.
No comments:
Post a Comment