Is it safe to store a product serial number under the Uninstall registry key where WiX stores bundle metadata?

[annapurnasomarouthu]

Question

I’m seeking clarification about storing custom data—specifically a product serial number—under the Windows Uninstall registry key created by WiX Toolset.

When we install a WiX-based bundle or MSI, it automatically creates an entry under:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{GUID}

This registry location typically contains essential metadata written by WiX, such as:

• BundleDetectCode
• BundlePatchCode
• BundleProviderKey
• Display name, version, uninstall command, etc.

These entries allow Windows and WiX to detect, repair, or uninstall the bundle correctly.

I am considering storing the product serial number (entered by the user during installation) in this same location, for example:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{GUID}
    SerialNumber = "XXXX-XXXX-XXXX-XXXX"

My questions are:

Security & Privacy:

• Is it considered safe or recommended to store a serial number in this location?
• Since this key is accessible to users (especially those with local admin privileges), could this expose license or customer-sensitive data?
• Are there any Microsoft or industry best practices that discourage storing serial or license information in the Uninstall key?

Alternative approaches:

• If this is not advisable, what would be a more secure method of storing such data?
  (For example, encrypting serial key.)

I’d like to follow proper installation and security practices, and I want to ensure that storing a serial number here won’t create unintended issues or security exposure.

Any guidance or experience from others who’ve implemented similar license storage mechanisms would be greatly appreciated.

Thanks in advance!
Annapurna

Open Source Maintenance Fee

• I (or an organization I'm a member of) pay the Open Source Maintenance Fee by sponsoring the wixtoolset project because I support the maintainers.