Windows GDID: Microsoft confirms an unremovable hardware identifier

Security & Trust Jul 15, 2026 at 19:288Add to bookmarks

Windows GDID: Microsoft confirms an unremovable hardware identifier
Illustration : Léa Fontaine

A Microsoft confirmation, revealed in an FBI court case, describes a persistent machine identifier across reinstallations and without opt-out. The political surface is larger than the technical surface.

The fact

On July 12, 2026, Ghacks reported a confirmation from Microsoft - documented in an FBI legal file cited by the article - of the existence of an identifier called GDID (Global Device ID) assigned to each Windows installation. This identifier persists through reinstalls, is not listed in privacy settings, and has no documented opt-out.

Our analysis

Technically, this is not a scoop: persistent hardware identifiers have long existed in Windows (Machine SID, hardware hash for licensing). Politically, it is: Microsoft officially confirms the existence and stability of this identifier in a legal context - not in public documentation.

The problem is not the identifier itself (useful for licensing, legitimate telemetry). It's the lack of discoverability and control. GDPR version: what is not declared cannot be consented to.

To watch

  • A formal response from Microsoft to the DSA/GDPR (Brussels has been aware of this type of identifier for several years).
  • Public technical documentation - will Microsoft publish the spec, or continue to treat it as an implementation detail?
  • Equivalent investigations at Apple/Google - the issue goes beyond Windows, it is structural.

Article produced by artificial intelligence, reviewed under human editorial control.

Our newsroom
Your Linux servers, as a desktop.
TermalOSSponsored
Ops, reimagined

Your Linux servers, as a desktop.

Agentless SSH monitoring, a full remote desktop and an AI ops copilot — no agents to install. Everything stays on your machine.

SSHMonitoringAI Ops
Get early access
Was this article helpful?

8 people liked this article

Like
S
Sofia AdlerSecurity & trust
🇬🇧 AI security, model safety, cyber.
Share:
Comments (8)

Sign in to join the discussion.

LitLover42 16 Jul 2026 · 05:01

Comment Microsoft va-t-il concilier ce GDID avec les lois sur la vie privée ? Et si cet identifiant est détourné, qui sera responsable ?

curio_usa 16 Jul 2026 · 07:09

Microsoft va dire que c'est pour des usages légitimes, mais on a le droit de s'inquiéter.

TechSavvy 16 Jul 2026 · 04:19

Pourquoi Microsoft ne propose-t-il pas de désactiver cet identifiant ?

J.P.R. 3 15 Jul 2026 · 15:28

Je me demande quelles sont les conséquences juridiques pour ceux qui tiennent à leur vie privée et veulent éviter ce suivi.

TravelTom 15 Jul 2026 · 15:19

Est-ce que cet identifiant va poser des problèmes de sécurité à long terme ?

ArtLover88 15 Jul 2026 · 15:14

Est-ce que cet identifiant va faire baisser la valeur de revente des appareils ?

SkepticSam 15 Jul 2026 · 15:14

Pourquoi ce GDID serait-il plus inquiétant que d'autres identifiants ? Microsoft a-t-il donné des explications ?

Alex_LDN 15 Jul 2026 · 15:09

C'est inquiétant, Microsoft devrait permettre de désactiver cet identifiant.

BookWorm47 15 Jul 2026 · 14:59

Est-ce que ce GDID pourrait être utilisé par des pirates pour suivre les utilisateurs sur plusieurs appareils ?

Your Linux servers, as a desktop.
TermalOSSponsored
Ops, reimagined

Your Linux servers, as a desktop.

Agentless SSH monitoring, a full remote desktop and an AI ops copilot — no agents to install. Everything stays on your machine.

Get early access
Topics
Explore
Information