Windows Recall returns to Copilot+ PCs as an optional feature

Microsoft reintroduces Recall for Copilot+ PCs with improved security and privacy features. Opt-in and local data storage for enhanced safety.

: Microsoft is relaunching the Recall feature for Copilot+ PCs, addressing the security and privacy concerns that led to its initial withdrawal. The feature is now opt-in, allowing users to control their data and disable Recall entirely if desired. Enhanced security measures include encryption, TPM safeguarding, and a secure VBS Enclave.

Microsoft is reintroducing its Recall feature for Copilot+ PCs after addressing the security issues that caused its initial withdrawal. According to David Weston, the company's president of OS security and enterprise, Recall now operates as an opt-in service, giving users full control over their data and allowing them to disable it fully if they wish.

The updated Recall features encryption for all sensitive data, with encryption keys protected by the Trusted Platform Module (TPM) and linked to Windows Hello Enhanced Sign-in Security. Additionally, Recall services run within a secure Virtualization-based Security Enclave (VBS Enclave), ensuring that only user-requested information exits the secure environment.

Other important security features include rate-limiting, anti-hammering to prevent malware attacks, and a Secure Settings store within the VBS Enclave. All snapshots and related information are stored locally, with no data sharing with Microsoft or third parties. Users can delete snapshots or pause the feature anytime, providing them with robust privacy controls.