After Google made wide sweeping changes to its TOS and privacy policy, Microsoft gloated about how it was better than Google on privacy. But perhaps the Redmond giant was waiting to see how that played out for Google? The new Microsoft service agreement follows Google's lead and allows it to share your data over all its cloud services. Once upon a time, or about two weeks ago, when talking about the new Skydrive.com and why versatility in cloud storage is so important, Microsoft stated, “We believe that your files are not just bits to be synced—and they’re certainly not to be scanned to serve advertising. Your files represent possibilities.”So it’s interesting that the new Microsoft service agreement states:When you upload your content to the services, you agree that it may be used, modified, adapted, saved, reproduced, distributed, and displayed to the extent necessary to protect you and to provide, protect and improve Microsoft products and services. For example, we may occasionally use automated means to isolate information from email, chats, or photos in order to help detect and protect against spam and malware, or to improve the services with new features that makes them easier to use.Et tu, Microsoft? It does not say your content will be scanned to serve ads, but the portion about “improve the services with new features” leaves the door wide open and could potentially mean anything in the future. That opens new possibilities for Microsoft. In fact, the new wording hints that Microsoft can extract content from chats, emails, photos, or files to tweak Bing search results. How very Google-like of Microsoft. Yet unlike Microsoft, Google has an account dashboard for users; it also responded to the heat of changing its TOS by allowing users to access a Google Account Activity Report.The old content portion of Microsoft’s service agreement stated: You understand that Microsoft may need, and you hereby grant Microsoft the right, to use, modify, adapt, reproduce, distribute, and display content posted on the service solely to the extent necessary to provide the service.Andrew Nicol, a New-York based lawyer, told VentureBeat that the changes are “bad for users.” He added:“Your data could ultimately be used for something that has no relationship at all to the purpose for which you provided it. For example, people are now mostly comfortable with the idea of Google scanning your email in order to display relevant search results in Gmail. But what if Microsoft started scanning your Office documents and displaying related ads in your Bing searches?”Microsoft’s new TOS also includes wording changes under “Privacy.” Here’s the old service agreement stance on Privacy vs. the new service agreement Privacy portion. The older one says Microsoft “may access or disclose information about you;” the new wording says “Microsoft may access, disclose, or preserve information associated with your use of the services, including (without limitation) your personal information and content, or information that Microsoft acquires about you through your use of the services.” It also addresses how Microsoft will cough up your cloud data when “law enforcement, government entities, and private litigants” request the content. The “legal demands and requests” are “usually requested pursuant to the normal legal process of the country or locality where the activity occurred.” It would be interesting to know how Microsoft complies when the requests are not “usual” or normal. Does that imply handing over your Microsoft cloud content to assist law enforcement without a warrant? Microsoft already spies on its users for free, whereas Google and Yahoo at least charge something ($25 and $29 respectively).Also in bold capital letters, the new Microsoft agreement states: IF YOU LIVE IN THE UNITED STATES, SECTION 10 CONTAINS A BINDING ARBITRATION CLAUSE AND CLASS ACTION WAIVER. IT AFFECTS YOUR RIGHTS ABOUT HOW TO RESOLVE ANY DISPUTE WITH MICROSOFT. PLEASE READ IT. Basically if you live in the U.S. and continue to use Microsoft cloud services, you cannot sue via a class action lawsuit; the waiver means any legal dispute with the Mighty M “will be resolved before a neutral arbitrator.”If you don’t like it, then you can terminate your account by going to Account Services. “The updated agreement will take effect on October 19, 2012. If you continue to use our services after October 19th, you agree to the terms of the new agreement or, of course you can cancel your service at any time.” If you use “your Microsoft account and many of our online products and services for consumers, such as Hotmail, SkyDrive, Bing, MSN, Office.com, Windows Live Messenger, Windows Photo Gallery, Windows Movie Maker, Windows Mail Desktop, and Windows Writer” after that time, then you automatically agree to abide by the new Microsoft TOS.Like this? Here’s more posts:Rise of the AI Overlord: Machines monitor, automatically detect suspicious behaviorAnonymizer tied to company selling TrapWire surveillance to governmentsOwned in 60 seconds with ZackAttack: From network guest to Windows Domain AdminEmerging technology: Cool or creepy innovation?Perfect, persistent, undetectable hardware backdoorUnblinking surveillance stare: Army’s 7-story flying football field-sized blimpVirtual avatar CBP agent Elvis screens travelers for lies at the borderCitizen Lab discovers mobile malware: FinFisher spyware variants target smartphonesLeak Police have gone crazy: Danger Room under fire for leaking imaginary weaponMicrosoft & NYPD launch an all-seeing Big Brother crime & terrorism prevention systemHacking Humanity: Human Augmentation on the HorizonWikiLeaks dumps Stratfor email dirt on TrapWire, a CIA-connected global spying systemStealthy Wi-Fi Spy Sees You Through Walls Thanks to Your Wireless RouterMassive Leak: Project HellFire Hackers Dump 1 Million Accounts from 100 Sites Follow me on Twitter @PrivacyFanatic Related content news Dow Jones watchlist of high-risk businesses, people found on unsecured database A Dow Jones watchlist of 2.4 million at-risk businesses, politicians, and individuals was left unprotected on public cloud server. By Ms. Smith Feb 28, 2019 4 mins Data Breach Hacking Security news Ransomware attacks hit Florida ISP, Australian cardiology group Ransomware attacks might be on the decline, but that doesn't mean we don't have new victims. A Florida ISP and an Australian cardiology group were hit recently. By Ms. Smith Feb 27, 2019 4 mins Ransomware Security news Bare-metal cloud servers vulnerable to Cloudborne flaw Researchers warn that firmware backdoors planted on bare-metal cloud servers could later be exploited to brick a different customer’s server, to steal their data, or for ransomware attacks. By Ms. Smith Feb 26, 2019 3 mins Cloud Computing Security news Meet the man-in-the-room attack: Hackers can invisibly eavesdrop on Bigscreen VR users Flaws in Bigscreen could allow 'invisible Peeping Tom' hackers to eavesdrop on Bigscreen VR users, to discreetly deliver malware payloads, to completely control victims' computers and even to start a worm infection spreading through VR By Ms. Smith Feb 21, 2019 4 mins Hacking Vulnerabilities Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe