Intune Assistant Privacy Policy

Privacy Policy – IntuneAssistant Worker

1. Introduction

This Privacy Policy describes how IntuneAssistant ("we", "our", or "us") processes personal data in relation to the IntuneAssistant Worker and the IntuneAssistant platform.

The IntuneAssistant Worker is deployed within the customer’s Azure environment and executes tasks locally within the customer tenant. This policy explains what data is processed, how it is used, and what responsibilities apply to both IntuneAssistant and the customer.

2. Roles and Responsibilities

In the context of data protection laws (including GDPR):

The Customer acts as the data controller for data processed within their Microsoft 365 and Azure environment.
IntuneAssistant acts as a data processor for data processed as part of providing the IntuneAssistant platform and services.

The IntuneAssistant Worker operates within the customer’s tenant and executes tasks on behalf of the customer.

3. Data Processing Overview

3.1 Data processed within the customer tenant

The IntuneAssistant Worker executes tasks locally (Azure tenant) and may access data available through Microsoft Graph APIs, including:

Device and configuration data (Intune)
User and group information
Policy and assignment data
Audit and activity data

This data:

Remains within the customer’s tenant during execution
Is processed under the permissions assigned by the customer
Is not accessed directly by IntuneAssistant systems unless explicitly required for functionality

3.2 Data processed by IntuneAssistant platform

The IntuneAssistant platform may process limited data required to provide the service, such as:

Task metadata and execution status
Aggregated results of executed tasks
Configuration settings related to the service
Customer account and tenant identifiers
Diagnostic and telemetry data (e.g. errors, performance metrics)

3.3 Support data

If the customer engages support, additional data may be processed, such as:

Logs provided by the customer
Error messages and diagnostic output
Configuration details relevant to the issue

This data is only used for support purposes.

4. Purpose of Processing

We process data solely for the purpose of:

Delivering the IntuneAssistant service
Executing automation, reporting, and monitoring tasks
Providing insights and visibility into Intune environments
Maintaining and improving service performance and reliability
Providing customer support

5. Legal Basis for Processing

Processing of personal data is based on:

Performance of a contract (service delivery)
Legitimate interests (service improvement, security, diagnostics)
Compliance with legal obligations (where applicable)

The customer is responsible for ensuring a valid legal basis for any data processed within their tenant.

We do not sell or share customer data with third parties for marketing purposes.

We may use subprocessors to deliver the service (e.g. cloud hosting providers). These subprocessors:

Are contractually bound to data protection obligations
Only process data as necessary to provide the service

A current list of subprocessors is available upon request.

7. Data Transfers

Data may be processed in regions where our infrastructure is hosted. Where applicable, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), in accordance with GDPR requirements.

8. Data Retention

We retain data only as long as necessary to provide the service, including:

Active subscription period
Reasonable period for support and diagnostics
Legal or regulatory requirements

Customers may request deletion of their data where applicable.

9. Security Measures

We implement appropriate technical and organizational measures to protect data, including:

Secure authentication using Managed Identity
Encryption in transit
Access controls and least-privilege principles
Monitoring and logging for security purposes

The customer is responsible for securing their Azure environment and access configurations.

10. Customer Responsibilities

Customers are responsible for:

Configuring permissions assigned to the worker
Ensuring compliance with applicable data protection laws
Managing user access and data within their tenant
Reviewing and approving automation tasks where applicable

11. Data Subject Rights

Data subjects may have rights under applicable data protection laws, including:

Access
Rectification
Erasure
Restriction of processing
Data portability

Requests should be directed to the Customer (data controller). IntuneAssistant will assist where required.

12. Changes to this Policy

We may update this Privacy Policy from time to time. Updates will be published at the same URL.

Last updated 8 hours ago

Good evening

hashtagPrivacy Policy – IntuneAssistant Worker

hashtag1. Introduction

hashtag2. Roles and Responsibilities

hashtag3. Data Processing Overview

hashtag3.1 Data processed within the customer tenant

hashtag3.2 Data processed by IntuneAssistant platform

hashtag3.3 Support data

hashtag4. Purpose of Processing

hashtag5. Legal Basis for Processing

hashtag6. Data Sharing and Subprocessors

hashtag7. Data Transfers

hashtag8. Data Retention

hashtag9. Security Measures

hashtag10. Customer Responsibilities

hashtag11. Data Subject Rights

hashtag12. Changes to this Policy