10 Jun 2025

LibreOffice for End User Privacy – TDF’s Annual Report 2024

Posted in Foundation, LibreOffice By Mike Saunders On June 10, 2025

TDF Annual Report 2024 banner

LibreOffice stands out as a privacy-respecting open source office suite. Unlike proprietary alternatives, the software is designed with privacy, user control and transparency in mind.

(This is part of The Document Foundation’s Annual Report for 2024 – we’ll post the full version here soon.)

Introduction

Concerns about end user privacy in the digital world have grown significantly over the past two decades, with and increasing awareness of data collection, user tracking and online surveillance. Many proprietary applications, including office productivity tools, often collect vast amounts of user data, in most cases without clear user consent.

All this has been clearly documented by Shoshanna Zuboff in her book: The Age of Surveillance Capitalism, which is defined as a new economic strategy that uses the activities and experience of the individual as a free raw material for hidden commercial practices of extraction, prediction, profiling and selling.

In this context, open source software differs substantially because respect for the user and for privacy are part of the ethical principles that guide the development of all applications. And LibreOffice stands out as the only office suite – open source or not – that respects privacy. Unlike proprietary alternatives, LibreOffice is designed with privacy, transparency, and user control of content in mind. The software does not collect telemetry data by default, does not include intrusive tracking functions, and allows users to work completely offline.

The following is a list of LibreOffice features and settings which help ensure end-user privacy, making the software a preferred choice for individuals, businesses and government institutions that prioritise data security.

No data collection or telemetry by default

Infographic showing that LibreOffice doesn't mine your data

One of the most significant privacy benefits of LibreOffice is its lack of telemetry by default. Unlike proprietary office suites that constantly send usage data back to their developers, LibreOffice does not collect or send any personal data without the user’s consent.

  1. There are no background processes that track document usage, keystrokes or user activity.
  2. LibreOffice does not create a unique user ID or track document interactions like some proprietary office suites do.
  3. There is no built-in cloud storage requirement, ensuring that files remain on the user’s device unless manually uploaded elsewhere.

Optional telemetry with user consent

LibreOffice offers an optional telemetry feature, but it is entirely opt-in and requires explicit user consent. The collected data will only be used to improve the functionality of the software and will never be shared with third parties.

Full offline functionality

Unlike cloud-based office suites such as Google Docs, Microsoft 365 or Apple iWork, LibreOffice is a fully offline suite.

  1. No forced cloud storage: documents remain on the local computer, reducing the risk of unauthorised access.
  2. No dependence on an Internet connection: users can work in completely isolated environments.
  3. No third-party server involvement: documents are never stored on a corporate server unless explicitly uploaded by the user.

For security-conscious organisations such as government agencies, law firms and healthcare providers, this offline capability ensures that sensitive documents never leave the internal network.

Open Document Format (ODF) for privacy and transparency

ODF logo

LibreOffice uses the Open Document Format (ODF) as its default file format. Unlike proprietary formats such as Microsoft’s DOCX, XLSX and PPTX, ODF is an open standard, which means:

  1. It does not contain hidden tracking elements or embedded metadata that can leak user information.
  2. It guarantees the integrity of the data in the long term because the format is fully documented, and the documentation is publicly available. Furthermore, the documentation corresponds to the format currently used by the software, unlike what happens with Microsoft 365 where the documentation is stuck at 2008.
  3. It does not contain proprietary encryption mechanisms that could be exploited for surveillance or unauthorised access.

Control over metadata

Metadata can contain sensitive information such as: author details, document history, and editing timestamps. LibreOffice allows users to remove all metadata before sharing a document to ensure that private information is not inadvertently shared with external parties.

Strong encryption and password protection

LibreOffice provides robust document encryption to prevent unauthorised access. Users can protect their documents with strong passwords and encryption settings. This prevents unauthorised users from opening or modifying the file.

In addition, LibreOffice supports GNU Privacy Guard (GPG) encryption for users who require public key cryptography to secure their documents.

No cloud lock-in: freedom to choose storage

Unlike Microsoft 365 or Google Workspace, which force all users to store documents in their respective cloud ecosystems, LibreOffice allows full control over file storage. This flexibility ensures that no third party can access user data without explicit permission.

Users can:

  1. Store files locally on their hard drive or external storage.
  2. Use self-hosted cloud services such as Nextcloud or ownCloud for increased privacy.
  3. Store files on USB drives, encrypted partitions or private network servers.

Macro security and malware protection

Macros are often used in office documents for automation, but they can also be exploited to deliver malware. LibreOffice includes robust macro security settings to protect users.

  1. By default, LibreOffice blocks macros from untrusted sources.
  2. Users can only enable macros if they are signed with a trusted certificate.
  3. The security level can be configured to prevents malicious actors from using macros as an attack vector.

Transparency and open source code

One of the biggest privacy benefits of LibreOffice is its open source nature. Unlike proprietary office suites that operate as black boxes, LibreOffice’s source code is publicly available and regularly audited by the security community. This level of transparency and user control makes LibreOffice a trusted alternative to closed-source office suites.

  1. No hidden spyware: because anyone can inspect the code, LibreOffice cannot contain hidden trackers or surveillance tools.
  2. Independent security audits: governments, cybersecurity experts and researchers can verify LibreOffice’s privacy claims.
  3. No forced updates: users have complete control over when and how they update LibreOffice, avoiding unwanted feature changes or telemetry settings.

Conclusion

LibreOffice is the most privacy-conscious office suites available today. With no telemetry by default, full offline functionality, strong encryption, metadata control and open source transparency, it provides users with a secure and private environment for document creation and collaboration.

For individuals, businesses and governments concerned about privacy and digital sovereignty, LibreOffice is a reliable, free and ethical alternative to proprietary office suites.

As privacy concerns continue to grow in the digital age, LibreOffice remains committed to ensuring that users retain full control over their data: a core principle that sets it apart from many commercial alternatives.

Like what we do? Support the LibreOffice project and The Document Foundation – get involved and help our volunteers, or make a donation. Thank you!

Leave a Reply