Privacy Policy — Teams Presence
Last updated: 2026-04-29
3SR, registered in France (228 Boulevard de la République, 33510 Andernos-les-Bains), publishes Teams Presence on Microsoft Commercial Marketplace as an Azure Managed Application. This privacy policy describes the data practices specific to this product.
1. Data we collect
1.1 Inside your Azure tenant
The Managed Application runs entirely inside your Azure tenant. The Function App polls Microsoft Graph every 5 minutes for the presence status of users belonging to the Entra ID groups you configured (parameter ENTRA_GROUP_IDS) and stores the history in a Cosmos DB account also located within your subscription.
Data retained in your tenant includes only:
- The Entra ID user identifier (GUID)
- The presence availability value (Available, Away, Offline, etc.)
- The timestamp of each availability change
No name, email, photo, manager hierarchy or other personal attribute is collected from Microsoft Graph or stored.
1.2 What 3SR does not access
3SR holds no access to your tenant data, except via the Reader role granted at install on the Managed Resource Group (used for support diagnostics only — and only if you explicitly request a support intervention). 3SR personnel never read your presence history, your group membership, or any user data.
1.3 What 3SR may collect outside your tenant
- Marketplace lead capture (when you click "Contact Publisher" on our offer): your name, company, email, phone (optional). Stored in a 3SR Azure Storage account in a French Azure region. Used solely to follow up on your enquiry. Retention: 5 years from last contact, then auto-deleted.
- Support emails (when you write to support@3sr.fr): your email + content of the ticket. Stored on 3SR's Microsoft 365 tenant. Retention: 7 years.
- Anonymous telemetry of the application installation (plan, version, anonymized deployment date — no tenant ID, no resource IDs). Aggregated for product analytics only.
2. Cookies and tracking
The Teams Presence application itself uses no cookies and no tracking mechanism. This public website (marketplace.3sr.fr) uses no third-party trackers and no cookies — only standard HTTP cache headers.
3. Third-party services
Teams Presence does not share your data with any third party. The application interacts only with Microsoft services already authorized by your tenant (Microsoft Graph, Azure Cosmos DB, Application Insights — all within your subscription).
4. Legal basis for processing (GDPR Art. 6)
- Lead capture & support: contractual interest + your explicit action (you initiated contact)
- Anonymous telemetry: legitimate interest (improving the product)
5. Your rights (GDPR Chapter III)
You have the right to access, rectify, erase, restrict processing, object to processing, and request portability of any personal data 3SR may hold about you. Contact dpo@3sr.fr — response within 30 days as required by GDPR.
6. Subprocessors
| Service | Role | Location |
|---|---|---|
| Microsoft Azure (West Europe / France Central) | Cloud infrastructure (lead capture storage) | EU |
| Microsoft 365 | Email + ticketing | EU |
No subprocessor outside the European Union.
7. Security
- 3SR systems use Microsoft Entra ID for authentication, with multi-factor authentication enforced for all personnel
- Data encrypted at rest (AES-256) and in transit (TLS 1.2+)
- 3SR personnel access is limited via Azure RBAC + audit logs retained for 7 years
8. Changes to this policy
This policy may be updated. Material changes will be announced via support@3sr.fr to active customers, and the "Last updated" date at the top of this page will be revised.
9. Complaints
You may lodge a complaint with the French Data Protection Authority (CNIL) — https://www.cnil.fr.
10. Contact
3SR — 228 Boulevard de la République, 33510 Andernos-les-Bains, France
Privacy questions: dpo@3sr.fr · General contact: support@3sr.fr