Intune Documentation
Intune DocumentationPDF Generator

Privacy Policy

Effective: September 6, 2025

This Privacy Policy explains how Intune Documentation Generator ("we", "our", or "the Service") handles information when you use the app to generate documentation from Microsoft Intune. We designed the Service to minimize data collection and focus on privacy by default.

What We Access

  • Authentication via Microsoft OAuth 2.0 (Azure AD). We request read-only Microsoft Graph permissions necessary to list Intune configurations and related assignments.
  • Intune configuration metadata and settings required to render your documentation (policies, profiles, scripts, assignments, and related details), read-only.

How We Process Data

  • We do not persist your Intune configuration data or generated PDFs. Data is retrieved during your session and used solely to build your report.
  • For larger exports, we may temporarily stage a JSON copy of your selected configuration in short‑lived storage (Vercel Blob) to reliably generate your PDF due to request body size limits on serverless platforms (see https://vercel.com/guides/how-to-bypass-vercel-body-size-limit-serverless-functions). The file is transmitted over TLS, exists for minutes, and is deleted immediately after generation.
  • Access tokens are managed by your browser session to call Microsoft Graph; we do not persist them server-side.

Operational Logs

For security and troubleshooting, our server logs may record minimal authentication metadata such as tenant ID, user principal name (UPN), IP address, user agent, and timestamps when API routes are called. These logs are not used to build profiles or share data and are retained only in hosting provider logs as part of normal operations.

Analytics

We use privacy-friendly analytics (e.g., Plausible) to understand aggregate usage without cookies or personal identifiers. Analytics are used to improve stability and usability, not to track individuals.

Data Sharing

We do not sell or share your configuration data with third parties. Data accessed from Microsoft Graph is used solely to generate your documentation.

Security

  • Authentication is handled via Microsoft OAuth 2.0 (Azure AD).
  • Only read-only Graph permissions are requested for Intune data.
  • We avoid storing tenant data; PDFs are generated on demand and not persisted.

Data Retention

We do not retain your Intune configuration data or generated documents. Operational logs described above may exist temporarily within hosting provider systems as part of standard logging.

Your Choices

  • You can disconnect at any time by signing out of the app.
  • You can revoke the app’s permissions from your Microsoft account/tenant to prevent future access.

Children’s Privacy

The Service is intended for professional/enterprise use and is not directed to children.

Changes

We may update this policy to reflect improvements or operational changes. If we make material changes, we will update the effective date above.

Contact

Questions about this policy? Contact us via LinkedIn: @ugurkocde.