StarkContrast M365 Tenant Privacy Statement
Effective Date: 06/11/2025

Welcome to StarkContrast. As part of our commitment to integrity, security, and transparency, we want to ensure that every team member, contractor, and affiliate understands how we handle personal and corporate data within the StarkContrast environment, including our Microsoft 365 (M365) tenant and managed devices.

1. Purpose and Scope

This Privacy Statement governs the collection, use, access, and retention of data processed through devices and services provided by StarkContrast, including M365 applications and any corporate endpoints deployed via Autopilot, Intune, or other enterprise tools. By continuing, you acknowledge that your usage is subject to StarkContrast policies and that your activity may be monitored to protect company assets and ensure compliance.

2. Data We Collect

StarkContrast may collect and process the following categories of data:

  • Device identifiers and system configurations

  • Login and usage activity within corporate applications

  • Security events and endpoint compliance data

  • Email, files, and communication metadata within the StarkContrast M365 tenant

  • Support and diagnostic information for troubleshooting purposes

No personal data unrelated to business operations is intentionally collected, and all data is handled with strict access controls.

3. How We Use This Data

We use collected information to:

  • Enforce endpoint and identity security policies

  • Protect against threats, misuse, and data leakage

  • Support IT operations, compliance audits, and device management

  • Maintain high service quality and performance

  • Comply with applicable legal and regulatory requirements

4. Access and Sharing

Data access is limited to authorized StarkContrast personnel and trusted service providers under confidentiality agreements. StarkContrast does not sell personal or business data. Where third-party processors are used (e.g., Microsoft), they are vetted for security, data residency, and compliance with global standards such as GDPR and CCPA.

5. Your Responsibilities

By using a StarkContrast-managed device or accessing the M365 tenant:

  • You consent to acceptable use policies and monitoring practices

  • You agree not to bypass or disable corporate security controls

  • You are responsible for reporting suspected breaches or policy violations

6. Retention and Deletion

Data is retained only as long as necessary for legitimate business purposes or legal obligations. Upon role termination or device deprovisioning, StarkContrast follows secure data wipe and retention procedures aligned with industry best practices.

7. Questions or Concerns

For questions about this privacy statement or how your data is used, please contact the StarkContrast Security & Compliance Team at privacy@starkcontrasttechnical.com.

By continuing, you acknowledge that you have read and understood this Privacy Statement and agree to the terms herein.