This policy setting determines the amount of diagnostic and usage data reported to Microsoft. A value of 0 will send minimal data to Microsoft. This data includes Malicious Software Removal Tool (MSRT) and Windows Defender data, if enabled, and telemetry client settings. Setting a value of 0 applies to enterprise, EDU, IoT and server devices only. A value of 0 for other devices is equivalent to choosing a value of 1. A value of 1 sends only a basic amount of diagnostic and usage data. A value of 2 sends enhanced diagnostic and usage data. A value of 3 sends the same data as a value of 2, plus additional diagnostics data, including the files and content that may have caused the problem. Note: that setting values of 0 or 1 will degrade certain experiences on the device. Windows 10 telemetry settings applies to the Windows operating system and some first party apps. This setting does not apply to third party apps running on Windows 10. If you disable or do not configure this policy setting, users can configure the Telemetry level in Settings. Countermeasure: Enable and configure this setting depending on your organization's requirements. Potential Impact: Users cannot determine the amount of diagnostic and usage Telemetry data that is reported to Microsoft. Fix: (1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsData Collection and Preview BuildsAllow Telemetry (2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsDataCollection!AllowTelemetry

[0 - security [enterprise only]/1 - basic/2 - enhanced/3 - full]

(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Data Collection and Preview Builds\Allow Telemetry (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\DataCollection!AllowTelemetry