Jan 20 2019 10:53 AM
Jan 20 2019 10:53 AM
we are using Teams in O365 with an on premise Exchange.
Now we got the request to hide internal account information to guest users.
I found how to hide specified details of one account here, but we need to hide all details for every guest account.
For now a guest could see the team members name and details like title, phone number, last seen and email.
Except for the Name this shouldn't be visible to guest accounts due to confidentiality reasons.
Is there any way to archive this?
Jan 20 2019 12:04 PM
No there is not a way to achieve that. If you have that degree of concern then they shouldn;t be guests.
Jan 20 2019 12:12 PM
Thank you for the information.
Agree with you but the new german General Data Protection Regulation seems to force us so.
Jan 21 2019 10:20 AMSolution
Teams is simply not designed for such scenario. While we do have some options to "hide" information in Azure AD, none of them applies to Teams. Best you can do is configure GAL segregation, which similar to how it work in Exchange will "hide" user objects as a whole, if you toggle the "Scope directory search in Teams using an Exchange address book policy (ABP)" setting. But this hides the entire object, not just some attribute.
You German folks should really raise this with your local Microsoft representatives. And maybe put it on UserVoice :)
Jan 21 2019 10:33 AM
Thank you also for the reply,
as we have an on premise Exchange ABP isn't supported so far.
Yes it seems we need to do that, this new policies are a mess over here ;)
Jan 21 2019 11:36 AM
GDPR applies to the UK just as much as Germany (well for now it does) and I've never seen anyone interpret it in that way. Some amount of personal data is required to allow a company to operate, the fact that some are guests wouldn't normally be a factor.
This content is not being made public and is reasonable usage.
By your logic you would need to be obfuscating names on external emails too ….
Jan 21 2019 11:48 AM
Jan 21 2019 11:57 AM
Agree with you, this will bring us to a level which leave us unable to operate.
For now there seems to be a scope how you can interpret it, but the regarding company´s GDPR representative asked for this feature so this was basically the reason for this question.
Also the same information is attached in every mail as signature....
However this shouldn´t be an GDPR discussion and my questions is answered so far,
but if anybody has detailed knowledge about the GDPR feel free to reply :)
Feb 24 2020 10:37 PM
yeah, the germans ... i try to setup Teams in our school to communicate with our pupils (High school). But one guy mentioned also that to ensure privacy the informations schould be hidden.
And i see the point that Teams is not made for such scenario. But it would be nice to get pupils in the MS world :)
In our case:
We are searching for a cloud to communicate and share files. Another provider wants 1500€ per year ... just to get this ...
I think schools are a nice target group for teams.
Feb 02 2021 10:29 AM
Hiya Adam, Steven,
In healthcare, we were looking to extend Teams usage from staff only to include patient groups as a means of providing services impeded by the pandemic. Patients information, including email addresses, must remain hidden from other non-staff (guest) participants under various data protection rules and laws; in this case, the requirement goes beyond simply not trusting guest users. In general terms, regardless if the organisation trusts a guest user, it may be the guests choice to have their email remain hidden, and they should have that choice without having to be excuded from a meeting.
Given that Microsoft has 'Teams for Healthcare' and 'Teams for Education', the fact their requirements analysis failed to address the potential possibility of some level of confidentiality in this area is not the fault of the Germans, GDPR interpretations or trust.
Feb 03 2021 02:01 PM
Email will not be visible if an external participant joins a meeting, also if they dial in their phone number will be masked and not visible.
Guests are a different mechanism, they are for B2B collaboration where it is important that you know who you are dealing with as they are outside your organisation as Team members. In your scenario, if your patients can't just be external participants in meetings, I would give them full accounts in your tenant, their personal details will then not be part of their account, they don't even need to have a real name.