Microsoft vs Bitwarden

Microsoft's privacy statement covers an enormous product surface — Windows, Office, Azure, Bing, Xbox, and Copilot — and the data practices vary dramatically across them. The umbrella policy is deliberately vague, deferring almost all specifics to product-level documentation. Cross-product data combination, AI model training on your content, and employer/school access to your files and communications are the key risks most consumers don't realise they're accepting.

Bitwarden is an open source password manager that encrypts your vault on-device so it cannot read your passwords — but it uses Google Analytics on both the website and service, is a US company subject to FTC jurisdiction and government requests, collects meaningful amounts of administrative data for marketing and product improvement, and uses legitimate interest as a legal basis for several secondary data uses.