Microsoft is bringing Recall back to Windows 11, reviving a privacy and security fight that began when the AI feature was first introduced in May 2024. Recall is designed to take regular snapshots of what a person does on a PC, index that activity, and make it searchable later.
The feature is currently limited to insiders with access to the Windows 11 Build 26100.3902 preview version. Microsoft says it will roll out more broadly over time, but the return has already renewed concern among security practitioners and privacy advocates.
What Recall does in Windows 11
Recall is built around a simple promise: help users find something they previously saw or did on their PC. Microsoft says the AI capabilities of Copilot+ PCs can let someone return to an app, website, image, or document by describing its content.
To make that possible, Recall saves snapshots, which Microsoft describes as images of user activity. The source article says the tool screenshots, indexes, and stores what a user does every three seconds.
Microsoft has added conditions around the preview version. A user must opt in to saving snapshots, and must enroll in Windows Hello to confirm their presence before accessing those snapshots. Microsoft also says users can pause snapshot saving at any time.
When a user wants to find something, they open Recall and authenticate with Windows Hello. From there, Microsoft says they can reopen the application, website, or document, or use Click to Do to act on image or text found in a snapshot.
Why the backlash returned
The controversy is not only about whether a single user chooses to enable Recall on their own machine. Critics argue that the bigger issue is what happens when one person’s information appears on another person’s Recall-enabled PC.
Even if User A never opts in, User A has no control over whether Users B through Z turn the feature on. If User A sends sensitive material to someone whose device is saving snapshots, that material may be captured, processed with optical character recognition and Copilot AI, and stored in an indexed database on that other device.
The source article lists several kinds of information that could be swept into that archive:
- photos
- passwords
- medical conditions
- encrypted videos and messages
That is why disappearing or privacy-protecting communications are central to the dispute. The original criticism noted that Recall could preserve sensitive disappearing content sent through messengers such as Signal. A message that was designed not to remain visible could still appear inside a searchable local record if it was displayed on a Recall-enabled screen.
The consent problem is wider than one PC
Microsoft’s opt-in requirement addresses part of the original criticism, because it gives the device owner a choice before snapshots are saved. But privacy critics see an unresolved consent gap: the people whose information appears on that screen may not have made that choice.
Privacy Guides writer Em wrote on Mastodon that the feature could extract information from secure software and store it on another person’s computer in a possibly less secure way. The point is not that screenshots were impossible before. The point is that Recall can make this kind of capture automatic, persistent, and searchable.
That changes the practical risk. A person might share something through software they believe is privacy-protecting, while the receiving machine quietly creates a record outside that software’s intended controls. Even a well-intentioned user may not fully understand what is being retained or how sensitive the resulting database could become.
For people in intimate partner violence settings, privacy advocates warned that this kind of tool could be abused. A detailed archive of activity can become especially dangerous when someone with access to the device is trying to monitor or control another person.
Why security experts see a valuable target
Security practitioners criticized Recall in May 2024 because it could create a concentrated store of highly sensitive material. If a malicious insider, criminal, or nation-state spy gained even brief administrative access to a Windows device, Recall could offer a direct path to a record of the user’s activity.
The concern is not only that data exists. It is that the data is organized for retrieval. A searchable database of snapshots is useful for the owner who wants to find a forgotten document or website. The same structure could also help someone looking for private data after compromising the device.
The source article also notes that such detailed archival material could be subject to subpoena by lawyers and governments. That adds another dimension to the debate: Recall may create records that users never previously had in one place, and those records could later matter outside the device itself.
Threat actors with spyware on a machine would not need to search manually through every file for the most sensitive material. Critics expect them to mine Recall in the same way attackers already mine browser databases that store passwords.
Microsoft’s preview changes may not settle the issue
Microsoft suspended Recall after months of backlash, then said on Thursday that it was reintroducing the feature. The company did not immediately respond to a message asking why it was bringing Recall back less than a year after the earlier chilly reception.
The preview version includes meaningful controls for the device owner: opt-in snapshot saving, Windows Hello authentication, and the ability to pause saving. Those changes may reduce some direct risk for users who understand the feature and manage it carefully.
But the central criticism remains broader. Recall does not only affect the person who enables it. It can also capture information from other people, other apps, and privacy-focused services once that material appears on screen.
That is why critics are likely to keep treating Recall as a major example of unwanted AI being inserted into an existing product. The feature may help some users search their own activity faster, but its return shows how difficult it is to separate AI convenience from the privacy cost of recording everyday computer use.