Absolutely true.
And at an Enterprise level with a policy, I presume it should be blocked for individual users to initiate. That would be appropriate.
But if you had something that bypassed that block and just updated the workstations without user input, that would be a very bad thing.
If I read it correctly, it sounds like people who deferred the update AND said they didn’t want to send data to Microsoft, they were the ones who got forced in some way.
It sounds like if you have a business edition of Windows 10 that it doesn’t happen, which would be good.
We use SCCM to manage Windows patching.
End users don’t have a choice of what patches to take, or when to take them. That is decided for them by central IT.
We get the patches from MS, deploy to test lab, and actually test them before deploying to production systems.
I can’t remember the last time we had trouble due to a bad patch.