Make telemetry Data opt-in

@kieferrm thank you for your answer. Maybe the opt-out is a correct implementation of GDPR. I’m not a lawyer 😄 But forcing people to scan your code for comments, and furthermore to learn how your code is structured and how it works, is definitely not transparent at all.

For example I did a quick search for GDPR in your code and randomly selected a file (workspaceStats.ts:342)

                          /* __GDPR__
				"workspce.tags" : {
					"${include}": [
						"${WorkspaceTags}"
					]
				}
			*/
			this.telemetryService.publicLog('workspce.tags', tags);

I don’t even know what workspace tags are. So I have to invest half an hour, an hour, maybe two to fully understand what data is sent in this case. The search for GDPR found 60 occurences in your code. So I have to invest about a week to fully understand what data is sent by your application. And for the next version i will have to do the same. Maybe there is something new or something changed.

And the people who decide such things in a company mostly don’t code at all. So it isn’t even possible for them to understand the data sent by the application by scanning the code.

At least an human readable version of the data collected by you should be available.

@furti thanks for bringing this up. As you can imagine GDPR is a big deal for a company like Microsoft. All products have been working with legal counsel to achieve compliance. Our current understanding is that our notification is a correct implementation of GDPR. All of our code that sends telemetry is Open Source right here in this repo and it is annotated with which events and properties we send. Look for __GDPR__ comments in our code.