Return
-
Title
Spotlight Cloud Feature Data Handling & Security Policies - Spotlight on SQL Server Enterprise -
Description
What are the data handling & security policies of the Spotlight Cloud feature of Spotlight on SQL Server Enterprise? -
Resolution
What data are we uploading?
Spotlight on SQL Server Enterprise user can opt-in to send system configuration and performance metrics from SQL Server to SpotlightCloud.io. Data is collected and then sent periodically. Once it is uploaded we store it for analysis and consumption by the end user. From the data and subsequent analysis SpotlightCloud.io is able to generate a picture of your system's health and performance.How is customer data transferred from Spotlight on SQL Server Enterprise to Cloud Connect?
When data is uploaded to cloud Connect it is sent via https to a cloud-based service running in Microsoft Azure. The low-level security protocols utilized during the data-transfer will depend on the client and the server.Where is customer data stored?
As of April 2018, all data is uploaded to Azure datacenters in North America. The datacenters utilized include: *North Central*, *South Central* and *East US2*.The best place to go is the [Windows Azure] (https://azure.microsoft.com/en-us/overview/trusted-cloud/) site .How long is customer data kept?
Data uploaded to Cloud Connect is kept indefinitely. However, we make no promises about how long we'll keep customers' data. Quest may purge 'old data' in order to keep our financial costs under control.How does Quest obfuscate Personally Identifiable Information (PII)?
SQL Statements and Query Plans are the only potention PII data in Spotlight on SQL Server Enterprise. They are not uploaded to Spotlight Cloud.How are users authenticated on the Spotlight on SQL Server Enterprise?* Standards based authentication protocol OIDC.* Claim based secured and signed authentication tokenWhere can I find security and compliance information on the Windows Azure Platform?
The best place to go is the [Windows Azure](https://azure.microsoft.com/en-us/overview/trusted-cloud/) site.