GDPR and Windows 10


I have heard this said that with Windows 10 coming to end of support on Hastings Day, 14th October 2025, that this breaches GPDR. One of the clauses in the GDPR is to keep systems up to date, and having Windows 10 come to end of support violates this, or have people got it wrong? Let’s investigate this in this blog post.

Windows 10 End Of Support

Microsoft is bringing Windows 10 to End of Support (EOS) on 14th October 2025, but they are also bringing an end of support to Office 2016 on the same date.

When a version of Windows, or Office comes to an end, it will still operate, but Microsoft will no longer issue the security and feature updates for it. Microsoft support for the Windows, or Office, version ends on the publicised date and immediately any organisation still running the versions becomes vulnerable to new malware and viruses being created daily to attack businesses and their systems.

End of Life and End of Support doesn’t actually make Microsoft liable for breaching GDPR, instead it makes the companies who use these products at risk of breaching GDPR compliance.

Breaching GDPR carries severe penalties that could damage, and potentially close, many businesses. So, you’ll be glad to know that the risk is easily avoidable, by taking timely action to update your Windows versions as soon as possible.

Windows 10 Enterprise LTSC

Microsoft has a solution for companies that cannot or do not wish to upgrade to a newer version of Windows, and that is through the Long Term Servicing Channel (LTSC) which extends support to 2032.

However, since this is a corporate product, the company upgrading must have at least 5 Windows 10 Pro licences to be able to obtain the LTSC licence from Microsoft.

Network Isolation

Network isolation works for older versions of Windows, simply by removing the computer from the Internet so that it cannot be accessed from the outside world will prevent security breaches, malware, and viruses, from affecting the computers.

Share this post with your friends