Microsoft announced on April 25 that its controversial Recall feature is now available to the general public, nearly a year after it was first introduced. The feature captures snapshots of a user’s activity on their Copilot+ PC, allowing them to ask natural language questions about past actions. It then uses generative AI to search through that activity and provide relevant answers.
Microsoft initially planned to launch a public preview of Recall in June 2024, but delayed the rollout multiple times following community backlash. Concerns were raised about how easily an attacker could access a user’s activity database, the lack of safeguards to obscure sensitive information within that database, and the absence of a proper Insider testing phase, suggesting the feature was rushed to release.
A preview version of Recall was eventually released to Windows Insiders in December via the Dev Channel, and expanded in 2025 to the Release Preview Channel after months of additional testing with new security features on April 10. All users with a compatible Copilot+ PC can now access the preview of the feature, except those in the European Economic Area, where it will become available later this year.
Compatible PCs must have a neural processing unit capable of performing more than 40 trillion operations per second, as Recall relies on on-device AI for speed and security. It ensures that users’ personal data does not need to be sent to a Microsoft data centre for the feature to function.
How Microsoft is ensuring Recall’s security
Recall is turned off by default and can be uninstalled entirely
After installing the update, users will be presented with a setup screen that describes Recall and asks if you would like to turn it on. They will also need to opt in a second time when setting up Recall later. The feature was originally going to be active by default, which drew criticism from the Windows community. Enabling Recall for one user does not activate it for other accounts on the same PC.
If a user doesn’t want Recall on their device at all, it can be uninstalled through the Windows Features control panel. It can also be temporarily paused by clicking the system tray icon that appears whenever it is turned on.
Filters for incognito browsers and some sensitive information
Recall has always had the option to exclude specific apps and sites from being captured in its activity screenshots. Now, it automatically excludes most browsers running in incognito or private mode. Note that windows not running in incognito mode will not be captured if they are open simultaneously with an incognito browser.
In response to some of the earlier criticism, Microsoft has applied automated content filtering of information it deems sensitive. For example, it will not take snapshots of a web page with a visible credit card field, online banking websites, or password managers that show credentials. However, according to Ars Technica, some users have still reported instances of credit card numbers, cheques, or emails with personal data being captured, so it isn’t 100% reliable.
Additionally, while the Recall system tray icon does indicate when filtering is active, it does not specify what it is being filtered, according to Ars Technica. To find out, users will have to manually scroll through the Recall database to review the captured content.
Encryption of Recall files
Microsoft has addressed concerns about how easily the Recall database could be accessed. All Recall files can be found in the AppData folder of the CoreAIPlatform.00\UKP directory, but they are now encrypted. Setting up Recall does require the PC’s local disk to be encrypted with BitLocker or Windows Device Encryption.
Microsoft says the encryption keys are protected by a Virtualisation Based Security hypervisor and Trusted Platform Module, and that rate-limiting and “anti-hammering” protections are also in place, meaning that repeated or automated attempts to access the data are detected and blocked to prevent brute-force attacks.
Windows Hello requirement
Using Recall requires Windows Hello biometric authentication during setup, which can be performed using either a fingerprint or a facial scan. Thereafter, users must enter their Windows Hello PIN each time they open the application. However, this method offers limited security because the PIN is often the same one used to unlock the PC and may be shared among household members for convenience.
Granular screenshot control
When turned on, Recall will take screenshots of and scrape text from only the active window on a PC. By default, all screenshots will be kept until they start to limit storage space, but users can choose an age-based expiration date, such as 30 or 180 days, if they wish to, according to Ars Technica.
Users can also go into Recall and delete specific screenshots, or all screenshots from specific apps, from their database manually. Alternatively, they can clear the entire database for a specified time period, such as the past hour, past day, or past month.
Windows also rolls out AI-powered Windows Search and Click to Do
Along with Recall, Windows has made two other AI-powered features publicly available as of April 25. One is a natural-language update to Windows Search, which allows users to search using conversational phrases to quickly find what they need across apps, documents, and device settings. It can be used in File Explorer, the Windows Search box, or Settings.
The other feature is Click to Do feature which, when activated, displays useful options after you’ve clicked on some text or an image. When text is highlighted, you can choose to copy, summarise, rewrite, or perform an internet search. When an image is highlighted, you can copy, save, blur, or erase the background, erase objects, or perform an internet image search.
