Windows 11’s flagship feature, “Recall,” harnesses local AI models to comprehensively record user interactions and screen activity. Microsoft unveiled the Recall feature at a Windows event on May 20, with shipping commencing alongside the new Qualcomm Snapdragon X (Elite and Plus) PCs on June 18. However, understanding how the feature operates and its security implications is paramount.
Official hardware requirements stipulate that Windows 11’s Recall AI functionality is exclusive to Snapdragon X PCs. This restriction is due to the inadequacy of Intel and AMD PCs in meeting the minimum requirement of 40 TOPs (trillion operations per second) for the Neural Processing Unit (NPU), a dedicated chip responsible for on-device AI processing.
The NPU is an essential component for Recall, as it facilitates the comprehensive recording of user actions and the storage of “snapshots” locally. With Recall, Microsoft transforms these recorded actions into “searchable snapshots,” enabling users to effectively search for and interact with their past activities. Operating discreetly in the background, Recall relies on the NPU chip to capture and document screen activity.
How does Recall AI work in Windows 11 Copilot+ PCs?
- Recall runs in the background all the time.
- It records everything you do with your PC, including your apps, movies, documents, emails, browsing history, browser tabs, and more. However, Microsoft will not record DRM-protected content, passwords, private browsing, or other sensitive information.
- Recall can understand your screen and then offer contextual suggestions.
- Recall is powered by an NPU chip and stores the data in your local storage.
As shown in the above screenshot, Recall can be opened as an app with a timeline-like interface.
The interface facilitates seamless navigation through various snapshots of user activities.
For instance, initiating a search query such as “Find the red barn” yields results from various applications such as PowerPoint, Excel, and Teams, showcasing instances where content related to the red barn was displayed.
It’s noteworthy that the presence of the exact phrase “red barn” is not mandatory in the content. Rather, Recall AI comprehensively analyzes screen content. For instance, if a user previously shared a picture of a red barn with a friend via WhatsApp, Messenger, Telegram, or any other application, Recall AI can identify and present relevant content in the search results.
This capability underscores Recall’s capacity not only to record but also to comprehend user screen interactions, thereby enabling intuitive and efficient retrieval of past activities.
As depicted in the screenshot above, Recall has been employed to search for “Korean restaurant that Alice.”
Recall’s search functionality extends across various applications, including WhatsApp, websites, and maps, showcasing its capability to scan recorded data in real-time.
This capability is indeed intriguing. However, some users may question how Recall excels in information retrieval across Windows when compared to the current version of Windows Search.
Unlike the existing iteration of Windows Search, Recall leverages the Windows Semantic Index and employs multi-modal small language models. Additionally, the NPU serves as the backbone of the entire Recall experience, contributing significantly to its efficacy and performance.
Does Windows 11’s Recall respect your privacy?
Regarding the integration of AI in Windows 11, the approach leans towards being privacy-friendly, albeit subject to interpretation. Recall, for instance, captures all on-screen activity, compresses it, stores it locally, and encrypts it using BitLocker encryption.
Furthermore, as initially highlighted by Windows Latest, Windows 11 24H2 automatically enables Device Encryption on new installations or devices by default. This encryption feature extends to safeguarding AI snapshots, thereby enhancing privacy and security measures.
According to Microsoft, users can access the Privacy & Settings page and navigate to Recall’s settings to review the snapshots collected and stored on their device.
From there, users have several options: they can clear all snapshots and reboot Recall, clear specific snapshots, or opt to disable Recall entirely. This level of control empowers users to manage their data privacy preferences effectively.
As shown in the above screenshots, you can also manually blacklist apps or browsers.
How secure is Windows 11 AI integration? Here’s a detailed explainer:
- Microsoft confirmed Recall does not record certain types of content. This could include incognito mode in Microsoft Edge and other Chromium browsers.
- Windows 11 Recall will not record Netflix, Disney, Prime or other streaming services offering protected media (DRM). How do you know if Recall is capable of recording your app? Just open the “Snipping Tool” and try to capture a screenshot or record a video. If the Snipping Tool can capture the app’s content, then Recall can do the same.
- Recall will not record one-time images (private images) sent via apps like WhatsApp, Telegram client Unigram, and more.
- Recall may not record certain videos depending on the app’s privacy settings.
- Your data won’t be uploaded to Microsoft servers/cloud. Microsoft will not train models on your data.
Everything happens locally. If you can trust your computer, you can also trust Windows 11 AI integration.
Microsoft clarifies that Recall lacks content moderation capabilities. Consequently, if an application or browser fails to adhere to industry standards, Recall may capture the screen and generate a snapshot containing sensitive information.
For instance, if an application neglects to obscure password entry or adhere to standard internet protocols, privacy, or security regulations, Recall can inadvertently record and store sensitive data locally on the device. This includes images, passwords, financial account details, credit card information, and more.
However, the significance of this issue may vary depending on individual perspectives. Storing sensitive information in applications that do not adhere to basic internet and security standards raises concerns. Users can mitigate risks by blocking insecure apps or websites in Recall settings, thereby exercising control over their data privacy.
Where does Windows 11 Recall store your data? Is Recall secure?
Recall AI securely stores “snapshots,” which are essentially recordings of your screen, on the local disk, ensuring data protection through encryption.
For users on Windows 11 Home, data encryption is facilitated by “Device Encryption,” which is activated by default in Windows 11 24H2.
On the other hand, Recall snapshots on Windows 11 Pro and Enterprise editions are encrypted using BitLocker encryption by Microsoft. This dual approach ensures robust protection of user data across different Windows 11 editions.
How Microsoft is protecting the data captured by Windows 11 AI:
- The recall is encrypted using BitLocker/Device Encryption.
- Recall snapshots are stored locally. You can delete and disable everything entirely.
- The recall is linked to the user profile, and Microsoft won’t share the data with other people using the same PC.
- Other apps and services cannot access recall.
The Recall AI is really interesting, but it’s limited to hardware with 40 TOPs NPU only, i.e., the Snapdragon X Elite and X Plus PCs.