+| Have 2 to 4 Global Admins | Global Admins have almost unlimited access to your organization's settings and most of its data. We recommend you limit the number of Global Admins as much as possible. A Global Admin may inadvertently lock their account and require a password reset. Either another Global Admin or a Privileged Authentication Admin can reset a Global Admin's password. Therefore, we recommend you have at least either one more Global Admin or a Privileged Authentication Admin in the event a Global Admin locks their account. |

+## Add multiple users at the same time in dashboard view

+1. Go to **Users** > **Active users**, and select **Add multiple users**.

+2. On the **Add list of user** page, choose whether to add user's one at a time or use a spreadsheet to add your new users.

+ :::image type="content" source="../../media/upload-csv-file.png" alt-text="Screenshot: Options to add users one at a time or use a CSV file.":::

+- Select **I'd like to upload a CSV with user information**. Download the example CSV file and make sure your spreadsheet includes the exact same column headings as the sample CSV file (User Name, First Name, and so on). If you use the sample CSV file, open it in an editing tool, like Microsoft Excel, and consider leaving all the data in row 1 alone, and only entering data in rows 2 and below. Your spreadsheet also needs to include values for the user name (like bob@contoso.com) and a display name (like Bob Kelly) for each user. When you're done entering your user's information, select **Browse** and navigate to the location of your CSV file and select **Open**.

+3. Choose **Next**.

+4. On the **Licenses** page, select the licenses you want to assign your users and choose **Next**.

+5. Review your selections and choose **Add users**.

+You can also use any of the following methods to add multiple users at the same time:

+> Standard user views are displayed by default in the **Filters** drop-down list. The standard filters include **All users**, **Licensed users**, **Guest users**, **Sign-in allowed**, **Sign-in blocked**, **Unlicensed users**, **Users with errors**, **Billing admins**, **Global admins**, **Helpdesk admins**, **Service admins**, and **User management admins**. You can't edit or delete standard views.

+A few things to note about standard views:

+- **Unlicensed users with Exchange mailboxes or archives** Select this box to show user accounts that were created in Exchange Online and have an Exchange mailbox, but weren't assigned a Microsoft 365 license. The results of this filter include users who have or who were assigned an Exchange archive.

+> If you create a custom view that returns more than 2,000 users, the resulting user list isn't sorted. In this case, use the search box to find users or edit your custom view to refine your search.

+## Choosing the right business subscription

+When signing up for Microsoft 365 Business Standard, Microsoft 365 Business Basic, Microsoft Apps for Business or the trial versions, you have 2 options for how to get started. Evaluate three key factors to choose which best meets your needs:

+- Which apps and services do you want to use straight away?

+- How much technical skill do you have?

+- Do you need Microsoft to act as a processor for your data?

+The table below outlines each choice.

+| |**Option 1** ΓÇô Sign in with Outlook, Hotmail, Yahoo, Gmail or other email account |**Option 2** ΓÇô Add a business domain and create a new business email account |

+||||

+|Available apps and services|Use Word for the web, Excel for the web, PowerPoint for the web, Teams for the web and Access for the web. OneDrive and SharePoint desktop app are included. This set of apps is best for very small businesses who don't need branded email immediately, or who already use branded email from a different provider and do not intend to switch to use Microsoft Exchange. You'll use Outlook with your existing email account (be it outlook.com, Hotmail, Yahoo, Gmail or other).|Use Word for the web, Excel for the web, PowerPoint for the web, Teams for the web and Access for the web. OneDrive and SharePoint desktop app are included. Microsoft 365 Business Basic with Option 2 also lets you access a wide range of additional

+|Required knowledge|Let's you get started without technical know-how.|Requires you to buy a domain, or to own a domain. You may need technical knowledge to prove ownership of the domain.|

+|Data handling|Available under the Supplement to the [Microsoft Services Agreement](https://go.microsoft.com/fwlink/p/?linkid=2180702) and is best for businesses that want some remote work and collaboration tools and are comfortable with Microsoft acting as controller for your data under the [Microsoft Privacy Statement](https://go.microsoft.com/fwlink/?LinkId=521839). Subscribers to services using this option will not have access to an individual's user content or data until a domain is attached. Subscribers should evaluate data ownership and intellectual property rights considerations based on their needs. For example, if you are working collaboratively with other users on a document stored in their account, they may choose to make those documents inaccessible to you. As such, you should evaluate data ownership and intellectual property rights considerations accordingly. Separately, users may choose not to transfer documents in their Simplified Sign-Up account to your Domain Account subscription, even after you invite them to do so. This means their documents may also not be accessible to you even if you add a domain account later|Available under the [Microsoft Online Subscription Agreement](https://go.microsoft.com/fwlink/p/?linkid=2180430) and is best for businesses that need Microsoft to act as a processor for their data under Microsoft's [Data Protection Addendum](https://go.microsoft.com/fwlink/p/?linkid=2180314) and need our full suite of remote work and collaboration tools. Subscribers who are in regulated industries or seek more control, both over the use of the services by your employees and over processing of related data by Microsoft, should choose Option 2 and attach a domain and sign up under the Domain Account enterprise-level agreement.|

+Use these three factors to determine which of the two options is best for your business needs. For more info see:

+- [Sign up for a Microsoft 365 Business Standard subscription](../simplified-signup/signup-business-standard.md)

+- [Sign up for Microsoft 365 Business Basic](signup-business-basic.md)

+- [Sign up for Microsoft 365 Apps for business](signup--apps-business.md)

+| Lead time in hours | You build your staffing plan based on the appointments that are scheduled so it's important to know in advance how many customers are coming in for service on any particular day. The lead time policy enables you to specify the number of hours in advance that customers must book or cancel an appointment. The minimum lead time is based on regular hours and not business hours.|

+description: "In addition to the Microsoft Trust Center that provides Security, Privacy, and Compliance Information for Microsoft 365, learn how Microsoft helps protect secrets you store in its datacenters. "

+## How we secure secret information provided by you

+In addition to the Office 365 Trust Center that provides [Security, Privacy, and Compliance Information for Office 365](./get-started-with-service-trust-portal.md), we use a technology called Distributed Key Manager (DKM).

+[Distributed Key Manager](office-365-bitlocker-and-distributed-key-manager-for-encryption.md) (DKM) is a client-side technology that uses a set of secret keys to encrypt and decrypt information. Only members of a specific security group in Active Directory Domain Services can access those keys in order to decrypt the data that is encrypted by DKM. In Exchange Online, only certain service accounts under which the Exchange processes run are part of that security group. No human is given credentials that are part of this security group and therefore no human has access to the keys that can decrypt these secrets.

+For debugging, troubleshooting, or auditing purposes, a datacenter administrator must request elevated access to gain temporary credentials that are part of the security group. This process requires multiple levels of legal approval. If access is granted, all activity is logged and audited. Access is only granted for a set interval of time after which it automatically expires.

+For extra protection, DKM technology includes automated key rollover and archiving. Automated rollover and archiving ensure that you can continue to access your older content without having to rely on the same key indefinitely.

+## Where Exchange Online uses DKM

+- Customer Key. If you're using [Service encryption with Microsoft Purview Customer Key](customer-key-overview.md), you'll use [Azure Key Vault](/azure/key-vault/key-vault-whatis) to safeguard your secrets.

+## Related articles

+[Service assurance in the Microsoft Purview compliance portal](./service-assurance.md)

+ Title: "Service assurance in the Microsoft Purview compliance portal"

+description: "Download third-party audits, learn how to comply with ISO, HIPAA, FINRA, and FedRAMP, and how Microsoft keeps customer data safe when you use Office 365."

+# Service assurance in the Microsoft Purview compliance portal

+Use Service assurance in the Microsoft Purview compliance portal to access documents that describe various topics, including:

+- Microsoft security practices for customer data that is stored in Office 365.

+- Independent third-party audit reports of Office 365.

+- Implementation and testing details for security, privacy, and compliance controls that Office 365 uses to protect your data.

+- International Organization for Standardization (ISO) 27001 and 27018

+ **New customers, and customers evaluating Microsoft online services** can access Service assurance, which is included with Office 365 Enterprise E3 and E5 plans (both trial and paid subscriptions). If you don't have one of these plans and want to try Service assurance, you can [sign-up for a trial of Office 365 Enterprise E5](https://go.microsoft.com/fwlink/p/?LinkID=698279).

+1. After you access Service assurance, select **Settings**. The Region and industry settings page displays as shown in the following screenshot.

+ 

+2. On the **Settings** page, select the down arrow next to **Region** and check the appropriate regions for your organization.

+3. Select the down arrow next to **Industry** and check the appropriate industries for your organization.

+Service assurance reports and documents are available to download for at least twelve months after publishing or until a new version of the document becomes available.

+- **Compliance reports** to view independent audits and assessments of Office 365 and other Microsoft cloud services as shown in the following screenshot.

+- **Trust documents** to view information about how Microsoft operates Office 365 as shown in the following screenshot.

+- **Audited controls** to view information about how Office 365 controls meet security, compliance, and privacy requirements, as shown in the following screenshot.

+Select the report you want to download, and select **Save** to download it to your computer. For Audited controls, select the report you want and then select **Download**. The following table describes the reports you can find on each Service assurance page.

+Depending on your specific setup, options included in your view might have some differences.

+**Why am I getting an error saying that documents from Service assurance are corrupted?**

+|23|**Microsoft Graph Change Notifications** <p> Developers can use [change notifications](/graph/webhooks?context=graph%2fapi%2f1.0&view=graph-rest-1.0&preserve-view=true) to subscribe to events in the Microsoft Graph.|Public Cloud: 52.159.23.209, 52.159.17.84, 52.147.213.251, 52.147.213.181, 13.85.192.59, 13.85.192.123, 20.9.36.45, 20.9.35.166, 20.96.21.67, 20.69.245.215, 137.135.11.161, 137.135.11.116, 52.159.107.50, 52.159.107.4, 20.98.68.182, 20.98.68.57, 52.142.114.29, 52.142.115.31, 51.124.75.43, 51.124.73.177, 20.44.210.83, 20.44.210.146, 40.80.232.177, 40.80.232.118, 20.48.12.75, 20.48.11.201, 104.215.13.23, 104.215.6.169, 52.148.24.136, 52.148.27.39, 40.76.162.99, 40.76.162.42, 40.74.203.28, 40.74.203.27, 20.9.37.73, 20.9.37.76, 20.96.21.98, 20.96.21.115, 137.135.11.222, 137.135.11.250, 52.159.109.205, 52.159.102.72, 20.98.68.203, 20.98.68.218, 51.104.159.213, 51.104.159.181, 51.138.90.7, 51.138.90.52, 52.148.115.48, 52.148.114.238, 40.80.233.14, 40.80.239.196, 20.48.14.35, 20.48.15.147, 104.215.18.55, 104.215.12.254, 20.199.102.157, 20.199.102.73, 13.87.81.123, 13.87.81.35, 20.111.9.46, 20.111.9.77, 13.87.81.133, 13.87.81.141 <p> Microsoft Cloud for US Government: 52.244.33.45, 52.244.35.174, 52.243.157.104, 52.243.157.105, 52.182.25.254, 52.182.25.110, 52.181.25.67, 52.181.25.66, 52.244.111.156, 52.244.111.170, 52.243.147.249, 52.243.148.19, 52.182.32.51, 52.182.32.143, 52.181.24.199, 52.181.24.220 <p> Microsoft Cloud China operated by 21Vianet: 42.159.72.35, 42.159.72.47, 42.159.180.55, 42.159.180.56, 40.125.138.23, 40.125.136.69, 40.72.155.199, 40.72.155.216 <br> TCP port 443 <p> Note: Developers can specify different ports when creating the subscriptions.|Inbound server traffic|

+$userLicense = Get-MgUserLicenseDetail -UserId "belinda@litwareinc.com"

+Set-MgUserLicense -UserId "belinda@litwareinc.com" -AddLicenses $addLicenses -RemoveLicenses @()

+If a mailbox is required to move back to the original source tenant, the same set of steps and scripts will need to be run in both new source and new target tenants. The existing Organization Relationship object will be updated or appended, not recreated. The migration cannot happen both ways simultaneously.

+### Remove endpoints and organization relationships after migration

+Use the Remove-MigrationEndpoint(/powershell/module/exchange/remove-migrationendpoint) cmdlet to remove existing migration endpoints for source or destination servers after the migration is complete.

+Use the Remove-OrganizationRelationship (/exchange/sharing/organization-relationships/remove-an-organization-relationship#use-exchange-online-powershell-to-remove-an-organization-relationship) cmdlet to remove existing oraganization relationships for source or destination servers after the migration is complete.

+## External DNS records required for Teams

+|**SRV** <br/> **(Teams)**|Allows your Office 365 domain to share instant messaging (IM) features with external clients by enabling SIP federation.|**Service:** sipfederationtls <br/> **Protocol:** TCP <br/> **Priority:** 100 <br/> **Weight:** 1 <br/> **Port:** 5061 <br/> **Target:** sipfed.online.lync.com <br/> **Note:** If the firewall or proxy server blocks SRV lookups on an external DNS, you should add this record to the internal DNS record. |

+|**SRV** <br/> **(Teams)**| It may be needed by Teams-only tenants that use Skype for Business Online phones for Teams and must point to online edge servers (such as _sip.online.lync.com_). <br/>It is needed by hybrid tenants to support their Windows Desktop clients and phones that sign in to on-premises deployments (such as _sip.\<domain>_).|**Target:** _sip._tls.\<domain>|

+|**CNAME** <br/> **(Teams)**|Required for PowerShell cmdlets that still use Skype for Business Online infrastructure for management. Therefore, it is also needed for Teams-only tenants.|**Target:** lyncdiscover.\<domain>|

+Microsoft makes commitments to store certain customer data at rest in the applicable _Local Region Geography_ for [eligible customers](advanced-data-residency.md#eligibility) that purchase ADR. The commitments are specified below.

+The following customer data will be stored at rest in the _Local Region Geography_:

+- Exchange Online mailbox content, (e-mail body, calendar entries, and the content of e-mail attachments stored in the related _Local Region Geography_.

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+- Exchange Online Protection (EOP). The following customer data will be stored at rest in the _Local Region Geography_: Service configuration data and policies, quarantined email and attachments, junk email, grading analysis, block lists (url, tenant, user), spam domains, reports, and alerts

+The following customer data will be stored at rest in the _Local Region Geography_:

+- Office for the Web stores files on a storage host which has its applicable promises to _Local Region Geography_.

+The following customer data will be stored in the _Local Region Geography_:

+- Viva Connections Dashboard and Feed can have content sourced from SharePoint Online, Exchange Online and Microsoft Teams. All customer data sourced from these services covered by data residency commitments will be stored in the _Local Region Geography_. Please refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint Online](m365-dr-workload-spo.md) and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.

+The following customer data will be stored at rest in the _Local Region Geography_:

+- All the topics and customer data snippets discovered are stored within the relevant _Geographies_ in Exchange Online Substrate (site or arbitration mailboxes, and Substrate). All topic customer data is partitioned based on which _Local Region Geography_ the data came from within your tenant.

+- Topic highlighting is computed dynamically when the SharePoint Online page is rendered by running a language model against the content of the page and linking it with the knowledge base of Topics. The Topics data is sourced from the Substrate in the _Local Region Geography_.

+- The administration configuration data is stored within the _Local Region Geography_.

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+The following customer data will be stored at rest in the _Local Region Geography_:

+Existing Microsoft 365 commercial customers who selected a country eligible for the new datacenter geo will be able to request a move. The program exists only for _Tenants_ with an eligible country code assigned to the Microsoft 365 _Tenant_ to migrate applicable customer data at rest for eligible workloads to the corresponding Microsoft 365 datacenter geo. For more information, see [Microsoft 365 Multi-Geo availability](microsoft-365-multi-geo.md#microsoft-365-multi-geo-availability) to confirm country eligibility.

+Data moves are a back-end service operation with minimal impact to end users. Features that can be impacted are listed in [User experience in a Multi-Geo environment](multi-geo-user-experience.md). We adhere to the [Microsoft Online Services Service Level Agreement (SLA)](https://go.microsoft.com/fwlink/p/?LinkId=523897) for availability so there is nothing that customers need to prepare for or to monitor during the move.

+Customer _Tenant_ admins can view the data location card in the Admin Center at any time to confirm the applicable customer data at rest location for each service, specifically for their _Tenant_. We also publish the location of datacenter geos, datacenters, and location of Microsoft 365 customer data in [Where your Microsoft 365 customer data is stored](https://office.com/datamaps) as a reference for the current default applicable customer data at rest locations for new _Tenant_. You can verify the location of your customer data at rest via the Data Location section under your Organization Profile in the Microsoft 365 admin center.

+Please refer to the [Data Residency Legacy Move Program](m365-dr-legacy-move-program.md) page for supported timeframes for your datacenter geo.

+Eligible customers will see a page in their [Microsoft 365 admin center](https://admin.microsoft.com/). Please see [Data Residency Legacy Move Program](m365-dr-legacy-move-program.md) for instructions on how to request a move.

+See [User experience in a Multi-Geo environment](multi-geo-user-experience.md) for a complete list of features that may be limited during portions of the data move for each service.

+|[Windows 10 lab guides](https://download.microsoft.com/download/5/c/e/5cee2d36-da83-45b5-8ce5-5c478c343620/Win10_21H2_guides.zip)|[Windows 11 lab guides](https://download.microsoft.com/download/a/1/0/a10d1f67-b499-4c2f-8db1-79d29cd98b05/Win11_Lab_Guides_10.18.zip)|

+|| Customizable infographic for your financial services organization <br> [Download as a PDF](https://go.microsoft.com/fwlink/?linkid=2214189) <br> [Download as a PowerPoint](https://go.microsoft.com/fwlink/?linkid=2214285)

+|| Customizable infographic for your retail organization <br> [Download as a PDF](https://go.microsoft.com/fwlink/?linkid=2214355) <br> [Download as a PowerPoint](https://go.microsoft.com/fwlink/?linkid=2214283) |

+|| Customizable infographic for your healthcare organization <br> [Download as a PDF](https://go.microsoft.com/fwlink/?linkid=2214356) <br> [Download as a PowerPoint](https://go.microsoft.com/fwlink/?linkid=2214357) |

+|| Customizable infographic not specific to a particular industry <br> [Download as a PDF](https://go.microsoft.com/fwlink/?linkid=2214284) <br> [Download as a PowerPoint](https://go.microsoft.com/fwlink/?linkid=2214282) |

+ 4. Any industry

+<details>

+ <summary>Nov-2022 (Build: 101.85.27 | Release version: 30.122092.18527.0)</summary>

+&ensp;Released: **November 02, 2022**<br/>

+&ensp;Published: **November 02, 2022**<br/>

+&ensp;Build: **101.85.27**<br/>

+&ensp;Release version: **30.122092.18527.0**<br/>

+&ensp;Engine version: **1.1.19500.2**<br/>

+&ensp;Signature version: **1.371.1369.0**<br/>

+**What's new**

+- There are mutiple fixes and new changes in this release

+ -V2 engine is default with this release and V1 engine bits are completely removed for enhanced security.

+ -Now you can set the temp path for scanning of archive files. Use oemTemporaryPath - via managed config / wdavcfg if you donΓÇÖt want engine to use /tmp for scratch work.

+ - V2 support configuration path for AV definitions. (mdatp definition set path)

+ - Removed external packages dependencies from MDE package. Removed dependencies are libatomic1, libselinux, libseccomp, libfuse, and libuuid

+ - In case crash collection is disabled by configuration, crash monitoring process will not be launched.

+ - Performance fixes to optimally use system events for AV capabilities.

+ - Stability improvement in case of mdatp restart and loading of epsext issues.

+ - Other fixes

+**Known issues**

+- When upgrading from mdatp version 101.75.43 or 101.78.13, you might encounter a kernel hang. Run the following commands before attempting to upgrade to version 101.85.21. More information about the underlying issue can be found at [System hang due to blocked tasks in fanotify code](https://access.redhat.com/solutions/2838901)

+This should prevent the issue from occurring.

+Use your package manager to uninstall the 101.75.43 or 101.78.13 mdatp version.

+```bash

+sudo apt remove mdatp

+sudo apt-get install mdatp

+```

+After executing the above, use your package manager to perform the upgrade.

+As an alternative to the above, you can follow the instructions to [uninstall](/microsoft-365/security/defender-endpoint/linux-resources#uninstall), then [install](/microsoft-365/security/defender-endpoint/linux-install-manually#application-installation) the latest version of the package.

+</details>

+3. Outlook Safe Senders (the Safe Senders list that's stored in each mailbox that affects only that mailbox).

+Instead of an organizational setting, users or admins can add the sender email addresses to the Safe Senders list in the mailbox. For instructions, see [Configure junk email settings on Exchange Online mailboxes in Office 365](configure-junk-email-settings-on-exo-mailboxes.md). Safe Senders list entries in the mailbox affect that mailbox only.

+- Currently, reporting messages in shared mailboxes or other mailboxes by a delegate using the add-ins is not supported. Messages are not sent to the [custom mailbox](user-submission.md) or to Microsoft. Built-in reporting in Outlook on the web sends messages reported by a delegate to the custom mailbox and/or to Microsoft.

+ > [!NOTE]

+ > To block only spam from a specific sender, add the email address or domain to the block list in [anti-spam policies](configure-your-spam-filter-policies.md). To block all email from the sender, use **Domains and email addresses** in the Tenant Allow/Block List.

+ Title: 'Test Base for Microsoft 365 Product Terms Change History'

+description: How to Test Base for Microsoft 365 Product Terms Change History

+search.appverid: MET150

+audience: Software-Vendor

+ms.localizationpriority: medium

+f1.keywords: NOCSH

+# Test Base for Microsoft 365 Product Terms Change History

+Version 1.0

+- Created on Nov 2nd, 2021.

+Version 1.1

+- Changes made on Feb 28th, 2022.

+Version 1.2

+- Changes made on Oct 28th, 2022.

+- Added Personal Data used for Communication

+- Refined No Personal Data Processing Required for Testing

+ Title: 'Test Base for Microsoft 365 Product Terms'

+description: How to Test Base for Microsoft 365 Product Terms

+search.appverid: MET150

+audience: Software-Vendor

+ms.localizationpriority: medium

+f1.keywords: NOCSH

+# Test Base for Microsoft 365

+The agreement that Customer has entered into with Microsoft for use of Azure services, including the [Product Terms](https://www.microsoft.com/licensing/terms) (the ΓÇ£AgreementΓÇ¥), applies to CustomerΓÇÖs use of Test Base for Microsoft 365. Additionally, the terms in this document (the ΓÇ£Service-Specific TermsΓÇ¥) apply to Test Base for Microsoft 365 and these terms control over any conflicting provisions in the Agreement.

+For the purposes of these Service-Specific Terms, ΓÇ£ServicesΓÇ¥ means Test Base for Microsoft 365, ΓÇ£Provided TechnologyΓÇ¥ means the technology provided by Customer to Microsoft through the Services, and ΓÇ£TestingΓÇ¥ means installing, accessing, or using the Provided Technology to evaluate its compatibility and performance with Microsoft hardware, software products and services. Testing may include compatibility testing, smoke testing, API analysis, functional testing, regression testing, performance testing, black box testing, or failure analysis (which involves the use of process monitoring and kernel debugging tools to determine the root cause of issues). Testing may also include the collection of data, including but not be limited to, diagnostic, analytical, security, basic health and quality, app insights and Windows reliability and Performance Monitor (ΓÇ£perfmonΓÇ¥) data.

+### Privacy Notice

+Microsoft will handle Provided Technology and data resulting from Testing in accordance with the Microsoft Privacy Statement at [aka.ms/privacy](https://privacy.microsoft.com/privacystatement). Please note that the [Data Protection Addendum terms](https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA) do not apply.

+### No Personal Data Processing Required for Testing

+Test Base for Microsoft 365 does not require any personal data to perform the Testing. Customers shall not provide any personal data to Microsoft in connection with the Test Base process (for example, when uploading the application package binaries.)

+### Personal Data used for Communication

+If Customers choose to, they may enter an email address that will be used to notify them of newly generated Test Base test results. Customer data will be deleted by Test Base no later than 30 days after the Customer account is terminated.

+### License grant to Microsoft

+Customer grants to Microsoft a nonexclusive, nontransferable, limited, royalty-free license during the Term: (1) to use the Provided Technology for evaluation and Testing in the Services; and (2) to reproduce a reasonable number of copies of the Provided Technology for back-up purposes.

+The license granted in these Service-Specific Terms will control if it conflicts with any license terms that accompany the Provided Technology.

+The license in these Service-Specific Terms does not grant Microsoft any development, marketing, or distribution rights to the Provided Technology, nor does it grant Microsoft a license to any intellectual property of Customer or any third party, other than the express license to Provided Technology set forth above.

+Microsoft will not modify, decompile, disassemble or otherwise reverse engineer the Provided Technology except as authorized by this agreement. Microsoft will not remove any proprietary marks or confidentiality notices that appear on the Provided Technology as provided to Microsoft.

+### Testing and Remediating Issues

+Testing. Customer will provide the Provided Technology to Microsoft for Testing without cost or expense to Microsoft. Microsoft, in its sole discretion, may conduct Testing on the Provided Technology through the Services. Upon completion of Testing, Microsoft will share the test results with Customer, including applicable log files if Testing reveals application compatibility or performance issues with the Provided Technology.

+Use of Test Results. Either Microsoft or Customer may use the test results to fix issues and/or improve its hardware, software products, and services without restriction of any kind.

+Remediating Issues. In the event the Testing identifies application compatibility or performance issues, the parties may discuss a remediation plan to address those issues. Neither party is responsible for interacting with the other partyΓÇÖs customers or end users regarding remediation of issues that are identified as a result of Testing. Customer will not make any representations to end users or others regarding Testing results or suggesting that Microsoft endorses the Provided Technology (unless the parties have expressly agreed otherwise in a separate agreement).

+### Provided Technology Warranties

+Customer continuously represents and warrants that Provided Technology it provides to Microsoft through the Services will not: (1) to the best of CustomerΓÇÖs knowledge, infringe any third-party patent, copyright, trademark, trade secret, or other proprietary right, or (2) exfiltrate any Microsoft technology or information from the Services.

+Customer will indemnify, defend, and hold Microsoft and its affiliates, successors, officers, directors and employees harmless from any and all third party claims (including attorneys' fees) arising out of or related to a breach of these warranties.