Depending on the version of Windows, you can disable telemetry. The CIS benchmarks for hardening images are a good place to find the policies that are required. You can also go the route of Windows Spy Blocker, and use firewall rules to prevent any telemetry from reaching Microsoft. A pragmatic approach would be to use both, and a PiHole for additional security.