Microsoft has initiated the deployment of an AI-driven tool that captures users’ screens at regular intervals.
The Copilot+ Recall feature is currently in preview mode and is accessible to select users of Microsoft’s AI-enabled PCs and laptops.
This marks the reintroduction of a feature that was previously criticized as a “privacy nightmare” upon its initial announcement last year.
Following a pause in its rollout in 2024, Microsoft has tested the technology with a limited group of users and is now broadening access to participants in its Windows Insider software testing program.
Microsoft has indicated that Recall will be made available globally, although users in the EU will have to wait until later in 2025.
Participation in the feature is voluntary, and Microsoft assures users that they can “pause the saving of snapshots at any time.”
The primary aim of Recall is to enable PC users to conveniently search through their previous activities, including files, photos, emails, and browsing history.
For instance, Microsoft explains that an individual who viewed a dress online a few days prior could utilize this feature to easily find where they encountered it.
Concerns remain, however. Privacy advocate Dr. Kris Shrishak, who previously labeled Recall a “privacy nightmare,” acknowledged that the opt-in feature represents “an improvement,” but expressed concerns about potential misuse.
“Information regarding other individuals, who cannot provide consent, will be captured and processed through Recall,” he stated.
The feature can save images from emails and messaging applications like WhatsApp, meaning that pictures and messages from others will also be recorded.
This is akin to a user manually taking a screenshot upon receiving a message.
“Consider disappearing messages on Signal that are permanently stored in Recall,” he remarked.
He also voiced worries that malicious individuals could exploit the images saved by Recall if they gained access to a user’s device.
Microsoft has clarified that Recall “does not share snapshots or associated data with Microsoft or third parties,” and that information is not exchanged between different users.
Recall necessitates identity verification prior to its activation and before users can access their snapshots, as stated.
Additionally, it was confirmed that images captured by Recall are stored locally on the user’s computer.
Users have the option to select which applications the feature utilizes, and snapshots will not be taken in private mode on certain browsers.
Microsoft also indicated that users have the ability to delete any screenshots that have been taken.
The UK’s data protection authority mentioned that it has been in ongoing discussions with Microsoft regarding this issue.
The Information Commissioner’s Office (ICO) expressed its expectation for enhanced user transparency and that personal data should not be utilized for purposes beyond its original intent.
“The ICO does not provide prior approval for any products or services.
“Organizations are responsible for proving their continuous compliance with data protection laws, and we will take action if they fail to protect individuals’ data rights.”