Microsoft's Windows Recall feature takes a screenshot of your screen every five seconds and stores them in a searchable database going back three months. If that sounds alarming, security researchers and privacy advocates agree — the feature was widely condemned as a privacy nightmare before it even launched, and more than a year after its rocky debut, it continues to raise serious red flags. Here's what you need to know about Recall, the wave of similar AI screen-recording features arriving on other platforms, and how to protect yourself.
What Is Windows Recall and How Does It Work?
Windows Recall is an AI-powered feature available on Copilot+ PCs running Windows 11. Its purpose is to give you a searchable timeline of everything you've done on your computer — every website you visited, every document you read, every message you sent. To build this timeline, Recall captures a screenshot every five seconds while you're using your PC. Those screenshots are processed by an on-device AI model that extracts text and objects, then indexes the results so you can search them in plain language later.
On paper, the idea is to create a perfect memory for your computer. In practice, it means your operating system is continuously photographing every pixel on your screen and storing the results — silently, in the background, whether you asked for it or not (if the feature is enabled).
Recall Captures Everything — Including What You Didn't Mean to Save
Windows Recall does not distinguish between sensitive and non-sensitive content. It will screenshot your banking portal, your therapy app, your private messages, and your work documents with equal indifference. Any active window is fair game. Passwords displayed briefly on screen, confidential client files, and medical records are all potential candidates for capture.
The Security Disasters That Followed Recall's Announcement
When Microsoft announced Recall in May 2024, the response from the security community was swift and damning. Researchers immediately identified a catastrophic flaw: the screenshots and their AI-extracted text were stored in an unencrypted, plaintext SQLite database on the device. Anyone with access to the PC — or any malware running on it — could read the entire history of everything Recall had photographed.
Independent researchers built proof-of-concept tools within days of the announcement demonstrating how easily the Recall database could be exfiltrated. One tool, dubbed "TotalRecall," could dump a device's entire Recall history in seconds. The database contained not just screenshots but extracted text including usernames, passwords, credit card numbers, and private messages — all sitting in a plaintext file any attacker could read.
The backlash was severe enough that Microsoft pulled Recall from its planned June 2024 launch and delayed the feature entirely. When it eventually relaunched, Microsoft had added several layers of protection: the database is now encrypted at rest, and accessing it requires biometric authentication through Windows Hello. Microsoft also added filtering options to exclude certain apps and websites from being captured.
These improvements addressed the most glaring vulnerabilities. But a 2026 report from GeekWire found that security researchers still consider Recall a significant privacy and security risk more than a year after its troubled debut. The fundamental problem — that your PC is taking a photograph of everything you do every five seconds — hasn't changed. The question is whether you trust that all the safeguards will hold.
The Theft Scenario: Why Encryption Doesn't Solve Everything
Microsoft's encryption and biometric authentication protections are real improvements. But they don't eliminate the risk — they just change the attack surface.
Consider a common scenario: your laptop is stolen. Thieves who steal laptops are often sophisticated enough to bypass Windows login credentials. If they can access the operating system — through a live boot drive, by exploiting a firmware vulnerability, or by simply cracking your Windows password — they may be able to access the Recall database directly or through the Windows Hello bypass techniques that security researchers have already demonstrated.
The stakes are higher with Recall than with a conventional theft. A thief who gets into a normal laptop finds whatever files you happened to have stored. A thief who gets into a Recall-enabled laptop gets a three-month video log of your entire digital life: every site you visited, every document you opened, every message you sent, every password field you filled in. The information density of a successful Recall breach is vastly higher than a conventional data theft.
Workplace and Shared Computer Risks
The risks multiply significantly in workplace and shared-device scenarios.
Employer-Installed Recall
If your employer has issued you a Copilot+ PC and enabled Recall through Group Policy, your employer has access to a continuous log of everything you do on that device — including personal browsing you do during breaks, private messages you send during the day, and any sensitive personal information that crosses your screen. Recall in an enterprise context could represent one of the most invasive employee monitoring tools ever deployed, all dressed up as a productivity feature.
Shared Family Computers
On a family PC, Recall captures activity from all users. A parent's financial information, a teenager's private conversations, and a partner's medical searches can all end up in the same searchable database. If multiple family members share a Windows account — a common setup in many households — anyone with access to that account can search the Recall history of everyone who used the machine.
Guest and Temporary Access
If you've ever let a friend, repair technician, or house guest use your PC while Recall was enabled, their activity was being recorded too. And if you've used a shared PC at a relative's home, your activity may have been captured in their Recall database without your knowledge or consent.
Data Brokers and Recall: A Compounding Risk
If you've ever browsed people-search sites to check what information data brokers have collected about you — or to submit opt-out requests — Windows Recall may have photographed those pages and stored the results in its database. Your searches, the profiles you viewed, and any personal details displayed on those sites could be sitting in your Recall history. Services like PrivacyOn, which automatically removes your information from 100+ data broker sites, help reduce what's out there — but they work best when combined with hardened device settings that prevent that information from being captured locally as well.
Skip the manual opt-outs
One opt-out won't stop them — brokers relist your data. PrivacyOn removes your info from 100+ sites and keeps it removed.
Start your free scanHow to Disable Windows Recall
Disabling Recall is straightforward. Microsoft now requires an explicit opt-in on new Copilot+ PC setups, but if you're unsure whether it's active on your device, verify and disable it now.
Option 1: Toggle Recall Off in Settings
- Open Settings from the Start menu.
- Navigate to Privacy & security.
- Select Recall & snapshots.
- Toggle off Save snapshots.
- Click Delete all snapshots to remove any existing stored screenshots from your device.
Option 2: Fully Uninstall Recall
If you want to go further, you can remove the Recall feature entirely from Windows. Open PowerShell as an administrator and run:
Dism /Online /Disable-Feature /FeatureName:Recall
This removes Recall from the system rather than just disabling it, eliminating any risk of the feature being re-enabled by an update or settings reset. Privacy-focused organizations including Proton and Tuta recommend fully removing Recall rather than simply toggling it off, as Microsoft has a history of re-enabling features after major updates.
After Disabling: Verify the Change
After disabling or uninstalling Recall, confirm that no snapshot data remains. Return to Settings > Privacy & security > Recall & snapshots and verify that the snapshots folder is empty. If any snapshots remain, delete them manually.
The Broader Trend: AI Screen Recording Is Coming to Every Platform
Windows Recall is the most prominent example of AI-powered screen recording, but it won't be the last. Similar features are arriving across the technology industry.
Apple Intelligence Screen Awareness
Apple has introduced screen awareness capabilities as part of Apple Intelligence in iOS 18 and macOS Sequoia. Apple's implementation is designed to process screen content on-device and pass context to Siri without storing screenshots in a searchable database. Apple's approach is significantly more privacy-preserving than Microsoft's original Recall design — but users should still review what data Apple Intelligence is accessing and how it's being processed.
Google AI Features
Google's AI integrations across Android and Chrome OS are increasingly aware of on-screen content. Features that read your screen to provide contextual suggestions send that data through Google's servers, where it is subject to Google's data retention and use policies. Google's AI-powered search and assistant features have similar screen-reading capabilities that deserve scrutiny.
The common thread across all these platforms is that AI systems increasingly need to understand what's on your screen to be useful — and that creates a new category of privacy risk that didn't exist when software was less intelligent. The combination of always-on screen awareness, cloud processing, and large databases of personal context is powerful, and it will require ongoing vigilance to manage.
Additional Steps to Protect Your Privacy on Windows
Disabling Recall is a critical step, but it's one piece of a broader Windows privacy configuration. Consider pairing it with the following:
- Disable the advertising ID. Go to Settings > Privacy & security > General and toggle off the advertising ID to stop apps from tracking your behavior across the system.
- Limit diagnostic telemetry. In Settings > Privacy & security > Diagnostics & feedback, set data sharing to Required only and delete any previously collected diagnostic data.
- Use a local account. Signing in with a Microsoft account ties your PC activity to your online profile. A local account limits what Microsoft can link to your identity.
- Audit app permissions. Review camera, microphone, location, and background app permissions regularly, especially after Windows feature updates that sometimes reset settings.
- Switch to a privacy-focused browser. Microsoft Edge has its own layer of tracking. Firefox or Brave with uBlock Origin significantly reduces the data collected during browsing sessions.
- Use encrypted email. Email clients running in a Recall-enabled environment could have your messages photographed during reading. Privacy-focused email providers like Proton Mail or Tuta add an additional layer of protection.
Frequently Asked Questions
Does Recall work on all Windows 11 PCs?
No. Recall is only available on Copilot+ PCs, which require a Qualcomm Snapdragon X, AMD Ryzen AI 300, or Intel Core Ultra 200V processor with an integrated neural processing unit (NPU). Standard Windows 11 PCs without qualified AI hardware cannot run Recall.
Can Recall capture content from apps that say they block screenshots?
Microsoft says Recall respects DRM flags that prevent screenshot capture and can be configured to skip certain apps. However, not all sensitive applications set these flags, and the default behavior is to capture everything. The burden is on the user to configure exclusions.
Is Recall enabled by default on new Copilot+ PCs?
After the initial backlash, Microsoft changed Recall to require an explicit opt-in during the Windows setup process. However, this policy could change with future updates, and devices set up before the policy change may still have Recall active. Verify your settings regardless of when you set up your device.
How long does Recall keep screenshots?
By default, Recall stores up to three months of screenshots, subject to storage limits. You can reduce the storage allocation or the retention period in Recall settings, or delete all stored snapshots at any time.