Microsoft has announced enhancements to the privacy and security measures of its AI-driven Recall feature, set to be available in laptops as part of the new Copilot+ PC program later this month.
In a blog post on Friday, Pavan Davuluri, corporate vice president of Windows and Devices, detailed the changes in response to customer feedback, aiming to make it easier for users to opt-in to Recall on their Copilot+ PCs while improving privacy and security safeguards.
Recall allows users to search for previously viewed items on their PC and is among the exclusive AI features in the upcoming Copilot+ PCs, touted as the “fastest, most intelligent Windows PCs ever built.”
However, concerns have been raised by security and privacy experts regarding Recall, particularly due to its periodic screenshots capturing users’ actions to create a visual timeline. This raised alarms about potential exposure of sensitive information to hackers.
In response, Microsoft is implementing three key changes to Recall:
- Recall will now be an opt-in feature during Copilot+ PC setup.
- Windows Hello authentication will be required to access the Recall timeline and search, ensuring proof of presence.
- Additional layers of data protection will be added, including “just in time” decryption protected by Windows Hello Enhanced Sign-in Security and encryption of Recall’s search index database.
These measures aim to bolster privacy and security, with other features like SmartScreen and Defender already enabled by default on Copilot+ PCs. Moreover, Microsoft assures that all Recall data is processed and stored locally, with no sharing of screenshots with the company.
Davuluri emphasized Microsoft’s commitment to evolving its experiences based on customer feedback, promising to continue listening and learning to ensure meaningful enhancements.