Device Enrolment Terms and Conditions MDM

These terms and conditions apply to all employees, contractors, and consultants (Users) who use Microsoft Endpoint Manager to access data & applications (Company Data) of a company that is a client of IT Foundations Ltd (Company) on their mobile devices. By accessing Company Data on your mobile device through Microsoft Endpoint Manager (the Service) you agree to comply with these terms and conditions. If you do not agree to these terms and conditions, do not access Company Data on mobile devices through Microsoft Endpoint Manager.


These terms and conditions apply to corporate issued devices. Devices running the following operating systems are able to use Microsoft Endpoint Manager:

  • iOS
  • iPadOS
  • Android
  • Windows 10 or 11
  • MacOS

Terms of Use

By accepting these terms and conditions the user acknowledges that they have read and agree to all relevant company policies relating to accessing Company Data including but not limited to any Acceptable Use Policy, Fair Use Policy, Data Protection Policy, General IT Policy, or Bring Your Own Device Policy that has been issued by the Company.

Your Obligations

Each user agrees to comply with the following conditions of use as a requirement of enrolling in and using the Service:

  1. Keep the security code on the device secret and not disclose it to any other person;
  2. Keep the device compliant with all of the security settings set out above;
  3. Not modify or attempt to modify the configuration of the Service application on the device or attempt to circumvent any security measures implemented as part of the Service or install malware; and
  4. When connected to the Company’s network:
    1. Not allow any other person to access Company Data using the device;
    2. Not leave the device connected or unattended without adequate security code protection;
    3. Ensure that all Company Data is viewable only in an environment where the content cannot be observed or heard by persons who are not authorised to access the information.

Responsibility and Liability

The user is solely responsible for backing-up their personal information on the device. This includes personal information like photos and personal contacts. Neither IT Foundations nor the Company assumes any responsibility for the loss of personal data stored on the device.

The user indemnifies IT Foundation and the company for any loss or damage to the extent it results from the user’s use of the Service other than in compliance with this user agreement.

Data Collection

By using a corporate device to access Company Data, Microsoft, IT Foundations and the Company may collect, process, and share some personal data to support business operations and facilitate access to Company Data on the device. This process collects personal data from the device as described on Microsoft’s End Point Manager data collection webpage.

End User Data that is never Collected

The enrolment platform does not collect nor allow an Admin to see an end users’ calling or web browsing history, personal email, text messages, contacts, passwords to personal accounts, calendar events or photos, including those in any photo app or camera.

Data Storage

Data collected using this service is stored according to Microsoft’s Data Handling Standard policy for Microsoft 365.

Data Sharing

Some data gathered by this platform will be shared with required third parties in order for the service to operate. Data will be sent and received from Apple or Google as appropriate for the device that is being enrolled. Details of the data shared can be found on Microsoft’s Endpoint Manager website. Only data required for the service to function is shared.

Data Retention

Data is retained and deleted in line with Microsoft 365 Data Handling Standard policy.

Data Privacy

No data that is collected through the enrolment of the device is sold to any other party.


If a device has not accessed the Service for 90 calendar days IT Foundations may automatically disenroll the device from the Service and erase all data stored on the device through the Service.