Updating system settings
To help make it easier to deploy settings to restrict connections from Windows 10 to Microsoft, you can apply the Windows Restricted Traffic Limited Functionality Baseline.
This baseline was created in the same way as the Windows security baselines that are often used to efficiently configure Windows to a known secure state.
You can configure telemetry at the lowest level for your edition of Windows, and also evaluate which other connections Windows makes to Microsoft services you want to turn off in your environment from the list in this article.
You can configure telemetry at the Security level, turn off Windows Defender telemetry and MSRT reporting, and turn off all other connections to Microsoft network endpoints as described in this article to help prevent Windows from sending any data to Microsoft.
If you enable this policy and set it to Anonymous info, usage information will be shared but not search history, Microsoft Account information, or specific location.
In Windows 10, version 1507 and Windows 10, version 1511, when you enable the Don't search the web or display web results in Search Group Policy, you can control the behavior of whether Cortana searches the web to display web results.
Make sure should you've chosen the right settings configuration for your environment before applying.
There could still be a small amount of network traffic to to evaluate if certain Cortana components are up-to-date or not.
You can also create a new REG_DWORD registry setting HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Device Metadata! To turn off Find My Device: You can also create a new REG_DWORD registry setting HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Find My Device\Allow Find My Device to 0 (zero).
Fonts that are included in Windows but that are not stored on the local device can be downloaded on demand.
You can configure these settings to control the data that is sent to Microsoft.
To prevent Windows from sending any data to Microsoft, configure telemetry at the Security level, turn off Windows Defender telemetry and MSRT reporting, and turn off all of these connections.There are many reasons why these communications are enabled by default, such as updating malware definitions and maintain current certificate revocation lists, which is why we strongly recommend against this.