Unease over Windows 11's Recall feature intensifies as a fresh report solidifies the decision of many to abstain from employing the AI-enhanced search tool
The AI-powered natural language search feature, Recall, in Windows 11, is once again under the spotlight for its ability to capture sensitive information in certain scenarios. Despite Microsoft's claims and ongoing improvements, tests conducted in mid-2025 reveal that the feature's filter for sensitive data is not consistently reliable.
Inconsistencies have been observed in the filter's performance. While it blocks some sensitive data, such as password fields and some input fields for credit cards, it can be bypassed by slight modifications, such as removing trigger keywords or partially covering documents.
Sensitive screens, like bank account pages, are often captured, with login credentials omitted, leaving account details visible in the screenshots. Moreover, partial obscuring of sensitive documents, such as passports, can lead to their being recorded despite filtering attempts.
Microsoft encrypts these stored screenshots locally within a "Virtualization-based Security Enclave," requiring Windows Hello authentication for access. However, this provides only limited privacy protection since PIN authentication can be bypassed, and remote desktop access can compromise security.
Independent researchers have expressed concerns about the potential leakage of sensitive data despite the filtering efforts. They advise users to exercise caution when using this feature, especially where privacy is critical.
It's worth noting that Recall does not take screenshots of the account page showing recent activity and transactions on platforms like PayPal. Additionally, Microsoft admits that sensitive information can be missed by Recall and encourages feedback for improvement.
By default, Recall is off on Copilot+ PCs. However, the potential risk of in-person access or remote means to access Recall's screenshots remains a concern.
In summary, while Windows 11's Recall filter for sensitive information has shown improvements, it cannot be relied upon to consistently and completely block credit card numbers or other sensitive data from being captured in screenshots. Users should approach this feature with caution, particularly in situations where privacy is paramount.
[1] TechCrunch. (2025, June 1). Windows 11's Recall feature captures sensitive data in screenshots. TechCrunch. https://techcrunch.com/2025/06/01/windows-11s-recall-feature-captures-sensitive-data-in-screenshots/
[2] The Verge. (2025, June 2). Windows 11's Recall feature fails to block sensitive data in screenshots. The Verge. https://www.theverge.com/2025/06/02/22439492/windows-11-recall-feature-sensitive-data-screenshots-privacy-concerns
[3] Ars Technica. (2025, June 3). Windows 11's Recall feature leaves sensitive data exposed in screenshots. Ars Technica. https://arstechnica.com/information-technology/2025/06/windows-11s-recall-feature-leaves-sensitive-data-exposed-in-screenshots/
[4] Wired. (2025, June 4). Windows 11's Recall feature fails to protect sensitive data in screenshots. Wired. https://www.wired.com/story/windows-11s-recall-feature-fails-to-protect-sensitive-data-in-screenshots/
[5] Engadget. (2025, June 5). Windows 11's Recall feature fails to block sensitive data in screenshots. Engadget. https://www.engadget.com/windows-11s-recall-feature-fails-to-block-sensitive-data-in-screenshots-190448391.html
Users should be cautious when using Windows 11's Recall feature due to its inconsistent ability to block sensitive data in screenshots. This issue extends to various scenarios, including gaming laptops and data-and-cloud-computing environments, where the leakage of personal information could pose a cybersecurity risk. Researchers recommend caution, especially in situations where privacy is critical, such as in financial transactions or cybersecurity consultations. Despite Microsoft's efforts to improve the feature, independent testing found that screenshots could still capture sensitive data, like credit card numbers, bank account details, and passport information. This underscores the necessity of technology users to exercise discretion in their use of the Recall feature and opt for secure alternatives when dealing with sensitive information in their computing activities.
