Microsoft Enhanced Mitigation Experience Toolkit 4.1 Privacy Statement

Last updated: November 2013

Microsoft is committed to protecting your privacy. This privacy statement applies to the data collected through Microsoft Enhanced Mitigation Experience Toolkit 4.1 (“EMET”).

This utility is designed to help IT Professionals and users block hackers from gaining access to their systems through common attacks. EMET enables users to manage security mitigation technologies that help make it more difficult for attackers to exploit vulnerabilities in a given piece of software.

Collection of Your Information

We collect many kinds of information in order to operate effectively and provide you the best products, services and experiences we can. Some of this information you provide directly to us. Some of it we get by observing how you interact with our products and services. Some of it is available from other sources that we may combine with the data we collect directly. Regardless of the source, we believe it's important to treat that information with care and to help you maintain your privacy.

Use of Your Information

Microsoft uses the information we collect to operate, improve and personalize the products and services we offer and to provide the service(s) or carry out the transaction(s) you have requested or authorized. Information collected through one Microsoft service may be combined with information collected through other Microsoft services to give you a more consistent and personalized experience in your interactions with us. We may also supplement this with information from other companies. For example, we may use services from other companies to help us derive a general geographic area based on your IP address in order to customize certain services to your geographic area.

Microsoft provides many of our sites and services free of charge because they are supported by advertising. In order to make these services widely available, the information we collect may be used to help improve the advertisements you see by making them more relevant to you.

Collection and Use of Information about Your Computer

When you use software with Internet-enabled features, information about your computer ("standard computer information") is sent to the Web sites you visit and online services you use. Microsoft uses standard computer information to provide you Internet-enabled services, to help improve our products and services, and for statistical analysis. Standard computer information typically includes information such as your IP address, operating system version, browser version, and regional and language settings. In some cases, standard computer information may also include hardware ID, which indicates the device manufacturer, device name, and version. If a particular feature or service sends information to Microsoft, standard computer information will be sent as well.

Sharing Information

In addition to any sharing described in this privacy statement, Microsoft may share or disclose information:

• With other Microsoft controlled subsidiaries and affiliates.
• As part of a corporate transaction such as a merger or sale of assets.
• With vendors or agents. Specifically, we may share it with companies we've hired to provide services on our behalf. When we share information with these other companies to provide services for us, they are not allowed to use it for any other purpose and must keep it confidential.

We also may share or disclose information, including the content of your communications:

• To comply with the law or respond to legal process or lawful requests, including from law enforcement and government agencies.
• To protect the rights or property of Microsoft or our customers, including enforcing the terms governing your use of the services.
• To act on a good faith belief that access or disclosure is necessary to protect the personal safety of Microsoft employees, customers or the public.

Except as described in this statement, we won’t disclose personal information you provide EMET to a third party without your consent.

Security of your information

Microsoft is committed to protecting the security of your information. We use a variety of security technologies and procedures to help protect your information from unauthorized access, use, or disclosure. For example, we store the information you provide on computer servers with limited access that are located in controlled facilities.  Additionally, when we transmit sensitive personal information (such as a credit card number or password) over the Internet, we protect it through the use of encryption, such as the Secure Socket Layer (SSL) protocol.

Where Information is Stored and Processed

Information collected by EMET may be stored and processed in the United States or any other country where Microsoft or its affiliates, subsidiaries or service providers maintain facilities. Microsoft abides by the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of data from the European Economic Area, and Switzerland. To learn more about the Safe Harbor program, and to view our certification, please visit https://www.export.gov/safeharbor/.

Microsoft may retain your information for a variety of reasons, such as to comply with our legal obligations, resolve disputes, enforce our agreements, and as long as necessary to provide services.

Changes to this privacy statement

We will occasionally update this privacy statement to reflect customer feedback and changes in our services. When we post changes to a statement, we will revise the "last updated" date at the top of the statement. If there are material changes to the statement or in how Microsoft will use your information, we will notify you either by prominently posting a notice of such changes before they take effect or by directly sending you a notification. We encourage you to periodically review the privacy statements for the products and services you use to learn how Microsoft is protecting your information.

How to contact us

Microsoft welcomes your comments regarding this privacy statement. If you have questions about this statement or believe that we have not adhered to it, please contact us by e-mailing emet_feedback@microsoft.com.

• If you have a technical or general support question, please visit https://support.microsoft.com/ to learn more about Microsoft Support offerings.
• For privacy questions, please contact us by e-mailing emet_feedback@microsoft.com.

Microsoft EMET, One Microsoft Way, Redmond, Washington 98052 USA • 425-882-8080

To find the Microsoft subsidiary in your country or region, see https://www.microsoft.com/worldwide/.