Microsoft has introduced new privacy features to Windows Recall, its AI-driven snapshot tool for Copilot+ devices. The company is implementing automatic filtering of sensitive information like passwords and credit card numbers directly on users' PCs.
The goal is to safeguard private data without requiring cloud-based processing. Microsoft's update ensures that captured information stays encrypted and is processed entirely on-device, giving users better control over their privacy.
New Security Measures Focused on On-Device Privacy
One of the most notable aspects of the Windows Recall update is the local handling of sensitive data. Microsoft's Recall will now automatically censor passwords, personal identification numbers, and payment details in screenshots, ensuring such information doesn't end up in snapshots.
Powered by Microsoft Purview, a tool typically used for enterprise data protection, the feature is turned on by default but can be disabled if a user wishes to store sensitive details.
The new privacy approach is part of Microsoft's broader strategy to improve AI performance directly on Copilot+ PCs. With the Neural Processing Unit (NPU) delivering over 40 TOPS, users can expect faster responses for AI tasks, improved battery efficiency, and enhanced privacy by keeping data local. The company emphasizes that none of the sensitive data ever leaves the device, even during Recall's processing.
Security Built on Strong Encryption and User Control
Data captured by the Recall tool is stored using encryption within a Virtualization-Based Security (VBS) enclave. These secure environments are isolated from the main operating system, making it nearly impossible for unauthorized users to access the data. Only the device's owner, authenticated through Windows Hello biometric credentials, can unlock and view snapshots.
The system goes further by encrypting each snapshot with its own individual key, protected by the device's Trusted Platform Module (TPM). Microsoft's layered security aims to ensure that even if snapshots are stored on the same device, they remain inaccessible to others.
Additionally, users retain complete control over the collection of data. Recall is entirely opt-in, and it won't save screenshots unless a user explicitly activates it during the initial setup of Copilot+. Even after activation, users can pause or delete snapshots at any time, and Windows provides tools to filter apps or websites from being captured.
Copilot+ PCs: The Only Devices with Recall Support
Currently, Windows Recall is limited to Copilot+ PCs, which are required to meet Microsoft's stringent security standards. Devices need to support Secured-core features, such as TPM 2.0 and BitLocker encryption, to ensure they are protected from low-level attacks. Virtualization-based security measures, including kernel DMA protection, help shield against potential breaches from external devices.
By restricting Recall's operation to these high-security PCs, Microsoft ensures that only devices with the necessary hardware protections can run the service. This prevents attacks during boot-up and ensures that the security keys used to decrypt snapshots remain safe within the system.
Recall Feature and Its Controversy
The Recall AI tool, intended to capture screenshots of user activities, has been a controversial topic since its introduction. Upon its initial release, Recall on Copilot+ PCs triggered privacy concerns among users, leading to worries about data security. Due to these apprehensions, Microsoft temporarily suspended the feature.
With the 24H2 version of Windows 11, update KB5041865 inadvertently included the option to uninstall Recall within the Windows Features settings. Clarifying this, Brandon LeBlanc, senior product manager for Windows, later said that the listing as a removable feature in the Control Panel was indeed a bug, and promised a fix in a future update.
Despite this oversight, Microsoft plans to debut Recall for Windows Insiders on Copilot Plus PCs in October. To enhance user autonomy and address prior security issues, the feature will be opt-in rather than default.
Although Microsoft has yet to confirm the possibility of fully uninstalling Recall, the European Commission's Digital Markets Act might compel the company to provide such an option in EU versions of Windows 11, similar to the uninstallation option for Edge in the European Economic Area.