Terms of Service and Privacy Statement

Terms of Service

There is no service level agreement (SLA) with any of the tools. They are provided as-is and may cease to exist without notice at any time.

Privacy Statement

What personal data is collected and how?

The data is collected through interactions with you. Some data is provided directly, and some is collected from your interactions and use of the tools. As with all web-based services, your IP address may always be collected.

For tools requiring authentication, all information available in Entra ID token claims or optional claims may be collected.

How is personal data used?

The data is used to:

  • Provide and improve the tools
  • Protect the tools against misuse
  • Do research

How long is personal data stored and where?

The personal data is stored as part of the tools’ usage logs. There is no specific retention time for usage logs; they may be stored for up to 10 years. Usage logs are stored in a database within the European Union and protected by industry best practices.

What personal data is shared and why?

No personal data is shared with anyone (unless required by law, to prevent or solve crime, etc.)

Can I ask to have my personal data erased?

No. Well, you can ask, but since personal data is collected only as part of the tools’ usage logs, it can’t be modified. If you don’t like this, don’t use the tools!

Dr Nestori Syynimaa (@DrAzureAD) avatar
About Dr Nestori Syynimaa (@DrAzureAD)
Dr Syynimaa works as Principal Identity Security Researcher at Microsoft Security Research.
Before his security researcher career, Dr Syynimaa worked as a CIO, consultant, trainer, and university lecturer for over 20 years. He is a regular speaker in scientific and professional conferences related to Microsoft 365 and Entra ID (Azure AD) security.

Before joining Microsoft, Dr Syynimaa was Microsoft MVP in security category and Microsoft Most Valuable Security Researcher (MVR).