First, try running Process Monitor and see what it writes/reads.

Don't use skype.

Thanks a lot!
I downloaded Process Monitor, I'll figure it out, I'll use it.

I can't say anything about Windows. I do not work with this OS, but for Linux users I can advise this reading about Skype.
In a nutshell: no one knows what Skype does in the system, because it was specially compiled with decompilation protection.
Just like the nvidia drivers, for example, skype is loaded into the kernel as a binary blob. Roughly speaking, what he is doing there is very difficult to find out.
The best solution, as turboNOMAD rightly said, is not to use Skype.
But if you really have to, then you can reduce the negative impact - run from a user who has a minimum of privileges. Groups "skype, audio, video" will be enough for full-fledged work. That's exactly how it works for me. A virtual machine is not needed.

Most likely, Skype switches to super-node mode (or whatever it is called) and passes through itself the traffic of other people with a weak channel. Somewhere on Habré there was information about this and how to disable the mode through the registry. In general, Skype is still a black box.

1. A restrictive network policy will not work - Skype either uses the network with might and main, or does not start at all (in the sense that it does not log in).
2. You can try fine-tuning access to disk resources from under HIPS - restrict access to all folders except %userprofile%\AppData\Roaming\Skype Theoretically, it will work. I practically don't know.
3. Run Skype from any sandbox, access to external resources from which is closed (my way).
4. (as I understand it, not your way) Switch to something else, less spying.
PS The supernode mode was already kind of canceled a couple of years ago, so it's irrelevant.