Entra Snapshot.
What's New

Privacy Statement

Last updated: February 2026

Overview

Entra Snapshot uses Microsoft's delegated authentication model. Your data stays in Microsoft's cloud — no tenant configuration data is stored on our servers.

How It Works

  • Configuration data is accessed in real-time via Microsoft Graph APIs and processed in your browser
  • Authentication tokens are stored in your browser session only, never on any server
  • Baselines and monitors are stored by Microsoft's UTCM service in your tenant — Microsoft's Privacy Statement governs how they handle this data
  • Only the minimum permissions needed are requested — you can revoke them at any time in the Microsoft MyApps portal

Cookies & Analytics

Your authentication session is managed via a signed token stored in your browser. No advertising, tracking, or third-party cookies are used.

Anonymous server-side usage analytics are collected to understand how many unique users and tenants use this service. When you sign in, a sign-in event is recorded server-side with cryptographically hashed (SHA-256) versions of your tenant ID and user ID. These hashed values are opaque counting keys — they cannot be reversed to identify you or your organization.

No client-side tracking scripts are loaded. No page views, feature usage, or behavioral data is collected — only anonymous sign-in counts.

Contact

For privacy questions, please contact me via GitHub.

← Back to Home