For anyone who comes across this thread at a later date,  a packet capture running for several hours from a location prior to the NATing element on my network appears to confirm what @Fae was indicating -- that the reported controller upgrades have resolved the issue as indicated.

With the packet capture, I was able to isolate the queries and traffic to the TP-Link cloud hosts were originating from user end point devices on the network -- users who had the Kasa app on their mobile devices connected via wifi.  I saw no connection attempts to TPLink's cloud servers from the Omada Software Controller itself while my packet capture was running.

It is certainly possible that I simply didn't have the packet capture running at the time when the Software Controller would have phoned home, but based on the amount of traffic I've been seeing, it seems like the true traffic source has been accurately identified.

  @Skavoovie 

I found the two missing options under Controller Settings > User Interface 

  @Fae I don't find the menu to stop data collection is it normal?



Thanks!

  Thanks @Fae ! I had an old firmware version on my OC200, that's why I could not see the toggle off data collection button.

The only tp-link related devices I have is a Deco Mesh X50 in a home environment and a few camera's that are not plugged in at the moment
There's nobody home, and there's literally nothing noteworthy going on on my network.

I've seen Omada being mentioned here, but I haven't heard of it before.

Look at my top user 

Well, that's great 

I noticed this today, and I don't know when it started, but i'm seeing one or two DNS requests per SECOND.

 

The only traffic on my internal network from 192.168.71.249 are SSDP requests, nothing special.
Since I started typing this post, I blocked access to one of the addresses, and in this short time, 655 requests have been blocked.

I don't mind devs having backdoors the analyse and troubleshoot (if it's safe), but this seems like suspisous behavior to me.