Anonymized and de-identified data access

• The WPA/Viva Insights platform provides reports using only aggregated and de-identified information
• Customers are in control of what personal and pseudonymized data is uploaded into the system (e.g. Payroll or
  Employee numbers, Address details, Identity numbers, Names, Contact details etc.)
• We guide and inform Customers on how to prepare their Org Data and as soon as it is uploaded, the system
  automatically anonymizes the information used to identify individuals (such as the Employee and Manager email
  addresses)
• At no stage in the process (before, during or after the upload has been completed), does the Technical team ever
  have access to any personal data – even the email addresses that are used to match the Org Data file with the
  O365 collaboration signals are pseudonymized with a cryptographically generated identifier
• This eliminates any opportunities to reverse engineer, de-crypt or decipher any information in the system
• Each company can also limit the information accessible to its system Users with the Role allocation (Admin vs
  Analyst) as well as being able to include or exclude individuals, departments, countries, management levels etc.
  from analysis by assigning or not assigning licenses or including or excluding information from the Org Data file.
  These options are only available to Customers, so no Technical team members have access to this functionality

Supporting Documentation:
• https://docs.microsoft.com/en-us/viva/insights/privacy/data-protection-considerations
• https://docs.microsoft.com/en-us/viva/insights/privacy/de-identify-data
• https://docs.microsoft.com/en-us/viva/insights/use/organizational-data
• https://docs.microsoft.com/en-us/viva/insights/setup/prepare-organizational-data