Microsoft launched Recall — a feature that screenshots your screen every few seconds and stores a searchable AI database of everything you do. Microsoft said screenshots were "always encrypted." Security researcher Kevin Beaumont built a free tool called TotalRecall that could copy and read the entire database in two seconds. The screenshots were stored in a plain SQLite database. Microsoft delayed the launch after the backlash. Microsoft spent a year rebuilding Recall's security with enterprise-grade encryption, and the same researcher broke it again — extracting everything without triggering any security alerts.
What they claim: Microsoft describes MAPS (Microsoft Active Protection Service, formerly SpyNet) as "cloud-delivered protection" for security, separate from telemetry. Presented as "Cloud-delivered protection" in Windows Security app.
What we found: MAPS sends encrypted file metadata, threat indicators, sample hashes, and behavioral data to Microsoft servers in real time. CompanionLink (Mar 2026) confirmed MAPS runs on every Windows 11 PC by default with "no dialog box, no visible switch." Microsoft's 2015 blog confirms MAPS sends "computer information such as IP address, operating system" and "personal information might be sent (such as search terms or data entered into forms)." Disabling requires PowerShell (Set-MpPreference -MAPSReporting 0) — not exposed in Settings UI.
What they claim: Microsoft claimed: "Windows Update won't function properly on copies of the operating system with telemetry reporting turned to its lowest level" — implying users must share telemetry for security updates.
What we found: EFF (Aug 2016) identified this as a "false choice entirely of Microsoft's own creation," writing: "there's no good reason the data collected at each telemetry level couldn't be adjusted so that even at the lowest level, users could still benefit from Windows Update." Microsoft names its lowest level "Security" then prevents it from delivering security updates. Disabling DiagTrack can cause Windows Update to stall or fail with error 0x80073712. Bruce Schneier amplified this concern.
What they claim: Microsoft Windows 11 Insider Build 26200.5516 release notes: "We're removing the bypassnro.cmd script from the build to enhance security and user experience of Windows 11."
What we found: Microsoft systematically eliminated every local account method: Feb 2022 — MSA requirement extended from Home to Pro. Mar 28, 2025 — bypassnro.cmd removed from builds. Oct 2025 — Build 26220.6772 removed start ms-cxh:localonly, fake email trick, BypassNRO registry toggle. Microsoft VP Scott Hanselman (Mar 20, 2026): "Ya I hate that. Working on it." Windows Central reports internal business units resisting change because mandatory sign-ins benefit advertising and product engagement metrics.
What they claim: Microsoft stated Windows 10 collects data necessary "for the operation of the service." VP David Heiner said the company would "work toward solutions that [CNIL] will find acceptable."
What we found: Jun 30, 2016: CNIL issued formal notice 2016-058 finding six violations of French Data Protection Act. App usage data (all apps downloaded/installed, time spent) ruled "excessive in relation to the purpose of the processing" and "not necessary for the operation of the service." Advertising ID activated without consent. PIN security allowed unlimited guesses. Data transfers to US without legal basis after Safe Harbor invalidation. Affected 10+ million French Windows users.
What they claim: Windows 10 provided a "Location" toggle that when turned off was presented as stopping location tracking.
What we found: PIPEDA Report 2018-004 (Sep 27, 2018): complaint "well-founded and conditionally resolved." OPC found even with Location off, apps could still determine precise location using other Windows data. Pre-selected privacy defaults did not constitute valid consent. Microsoft's explanations created confusion "by conflating related practices or concepts." Sensitive information (ethnicity-related data) used for "Tailored Experiences" without consent. Speech Recognition setting not functioning as described.
What they claim: Microsoft's position was that diagnostic data collected through Office products were not personal data.
What we found: Nov 5, 2018: Dutch government DPIA (by Privacy Company) found eight GDPR violations in Office 365/2016 ProPlus. Microsoft collecting ~25,000 types of events — vs ~1,000 for Windows at full telemetry. Included actual email subject lines and sentences from documents where translation/spell check used. No way to turn off diagnostic data. Indefinite retention. Microsoft reclassified from "data processor" to "joint controller." Microsoft conceded diagnostic data "contain personal data" — reversing their prior position.
What they claim: Microsoft VP David Weston: "Recall snapshots are available only after you authenticate using Windows Hello credentials," specifically highlighting biometric authentication. Requires "at least one biometric sign-in option."
What we found: The Register (Aug 2025): Entire Recall database accessible with just a 4-digit Windows Hello PIN, completely bypassing biometrics. Using free TeamViewer remote desktop on a Copilot+ laptop, researcher accessed complete Recall history from a second computer — "When it asked for a face, they just gave it the PIN instead." David Bombal demonstrated face enrollment tricked with a printed photo.
What they claim: Windows 11 allows users to set their default browser and search engine in Settings > Apps > Default Apps.
What we found: Taskbar search returns Bing results in Edge regardless of configured default browser or search engine. Microsoft created proprietary microsoft-edge:// protocol bypassing standard HTTPS link handling. Windows Search, Widgets, system notifications all ignore default browser. Third-party MSEdgeRedirect tool exists to intercept forced links. EEA users gained default browser/search respect per DMA compliance (Jun 2, 2025) — non-EEA users still lack this.
What they claim: Microsoft Copilot privacy page: "Your security matters. With Copilot, you know what data is collected and how it's used, because you're in control." Also: "you can always opt out" of model training.
What we found: "Model training on text" enabled by default for all consumer Copilot users signed in with MSA. Opt-out buried under Profile > Privacy > Model training. Consumer conversations, voice, uploaded images and files used for training unless proactively disabled. Microsoft's Aug 2024 blog confirmed it began using consumer data for training. EU/UK/Switzerland users exempt (training disabled by default) — revealing Microsoft knows the default-on approach is legally questionable.
What they claim: Microsoft told Tom's Hardware (Oct 2025) that Gaming Copilot screenshots are used to help answer player questions in real-time and that visual data is "not stored or used for model training."
What we found: Kevin Beaumont (DoublePulsar, Oct 2025) confirmed Gaming Copilot screenshots gameplay, extracts OCR text, sends data to undocumented Azure endpoints not listed on Microsoft's website. Widget includes toggles "Model training on text" and "Model training on voice" — text training enabled by default. Network traffic persisted after Game Bar closed. Auto-installed silently with no consent dialog. Cannot easily uninstall — requires PowerShell admin to remove Xbox Game Bar. ResetEra user (Oct 22, 2025) reported NDA'd game being captured and sent to Microsoft.
What they claim: Microsoft M365 Copilot page promises data handled within enterprise "security and compliance boundary." Enterprise docs: "Prompts, responses, and data accessed through Microsoft Graph aren't used to train foundation LLMs."
What we found: Jan-Feb 2026: Bug CW1226324 — M365 Copilot bypassed Data Loss Prevention (DLP) policies and read emails labeled "confidential" in Sent Items and Drafts. Affected content included business agreements, legal communications, governmental inquiries, protected health information. UK NHS reported internally as INC46740412. Microsoft confirmed "unspecified code error." The Register, Cybernews, TechCrunch all reported. Microsoft did not disclose how many organizations affected.
What they claim: Microsoft states OOBE gives users "the chance to disable several privacy settings" during setup. Documentation says users can "confirm privacy settings by turning on or off the toggle switch."
What we found: Every privacy toggle on OOBE screen defaults to enabled (On): advertising ID, location, diagnostic data, inking/typing data, tailored experiences. "Accept" button large and prominently colored; customize option visually de-emphasized. After updates, "Second Chance OOBE" (SCOOBE) re-asks about Edge, OneDrive, M365 even if declined. Thurrott: "Microsoft violates your privacy by default and does everything it can, from dark patterns to outright harassment, to convince you to lower your defenses." Most important option — disabling telemetry — not even available in OOBE toggles.
What they claim: Microsoft consumer privacy page: "you know what data is collected and how it's used." Privacy FAQ: conversations used only "to monitor performance, troubleshoot problems, diagnose bugs, prevent abuse."
What we found: Consumer conversation data retained for 18 months by default. Microsoft's Privacy FAQ confirms: "Some Copilot conversations are subject to both automated and human review." After user-initiated deletion, backend logs retained for undefined period. Opting out of AI training does NOT exclude conversations from "other general product improvements nor from use for advertising, digital safety, security, and compliance purposes." Conversations used for ad personalization if enabled. 18-month window non-configurable.
What they claim: Microsoft (Aug 2024 blog): "Before training AI models, we remove information that may identify you" and "continuously evaluate models for privacy and safety."
What we found: Scope before de-identification: voice conversations, text, uploaded images, files, inferred interests, search queries, ad interactions, browsing behavior from Bing/MSN/Copilot. 18-month retention applies to identifiable logs, not just de-identified data. Human review confirmed. Age verification for training exemption relies only on what users "tell Microsoft" — no actual verification. Even after opting out of training, data used for advertising. EEA exclusion demonstrates Microsoft recognizes GDPR-level protections are incompatible with default approach.
What they claim: Microsoft Privacy Statement: "You can choose which data you share." OOBE presents a "Choose privacy settings" screen implying user control.
What we found: Advertising ID (Settings > Privacy & Security > General) enabled by default on every new install. Generates unique per-user identifier following user across all Windows Store apps and ad networks. OOBE presents all tracking options pre-enabled using dark patterns from Windows 10's "Get going fast" approach. Thurrott.com: "Windows 11 violates your privacy by default." Tied to mandatory MSA creating persistent cross-device identifier. Turning it off doesn't reduce ads — Microsoft admits "ads may be less interesting and relevant."
What they claim: Microsoft advertises OneDrive as included with Windows with "5 GB of free cloud storage" — implying a generous free benefit.
What we found: Auto-enabled backup for Desktop, Documents, Pictures, Music, Videos quickly exceeds 5GB. Once full, syncing stops silently with no prominent warning. Files in OneDrive Recycle Bin count against quota. Outlook attachments also count. Fix: pay .99/month for 100GB or .99/month for M365. Auto-enrollment creates forced demand for a paid subscription. Google offers 15GB free; Apple offers 5GB but doesn't auto-enroll desktop folders.
What they claim: Microsoft describes Start Menu ads as "recommendations" that "will help you discover some of the great apps that are available" from "a small set of curated developers." (KB5036980, Apr 2024)
What we found: KB5036980 (Apr 2024) injected third-party Microsoft Store promotions into Start Menu's "Recommended" section. Initially optional preview, became mandatory in May 2024 Patch Tuesday. Tested in Insider build 22635.3495 for only two weeks before broad rollout. Users must navigate Settings > Personalization > Start to disable. Engadget: "Windows 11 now comes with its own adware."
What they claim: Microsoft: "Windows 11 provides privacy settings that let you control how your data is used for recommendations and personalization." Implies straightforward control.
What we found: PCWorld (Dec 2024): 9 separate tweaks across 7+ Settings panels required to disable ads. Locations: Personalization > Start, System > Notifications > Additional settings (3 hidden checkboxes), Privacy & Security > General, File Explorer > Options > View, Taskbar Settings (Widgets), per-app notification toggles, Background (Spotlight), Search Permissions, Device Usage. Notification checkboxes collapsed by default, require scrolling and expanding hidden section. Windows 11 costs 39-99 — users paying for a product with ads across Start Menu, Lock Screen, File Explorer, Settings, notifications, search, and widgets.
What they claim: Microsoft stated it had "introduced key changes to our cookie practices even before this investigation started."
What we found: Dec 19, 2022: CNIL fined Microsoft Ireland EUR 60 million (CNIL's largest fine that year). Investigations Sep 2020 and May 2021 found bing.com depositing advertising cookies without consent. One click to accept, two clicks to refuse — violating Article 82 French DPA (ePrivacy Directive). Microsoft only added "Refuse All" button Mar 29, 2022, after investigation began. CNIL ordered compliance within three months or EUR 60,000/day additional penalties. Only actual monetary fine imposed on Microsoft for consumer-facing privacy violation.
What they claim: Microsoft Xbox account creation included pre-checked box: "enhance online experiences by letting Microsoft Advertising use my account information."
What we found: Jun 5, 2023: Microsoft paid 0 million to settle FTC charges (Case 1923258) for violating COPPA. Collected personal information from ~218,000 children under 13 during Xbox account creation (Jan 2017 — Dec 2021) without parental consent. Retained data from ~10 million incomplete account registrations including children's data for at least five years — even when parents never completed signup. Only US federal privacy enforcement action resulting in penalty against Microsoft.
What they claim: Microsoft support page: "Snapshots and any associated information in the vector database are always encrypted."
What we found: June 2024: Security researcher Alexander Hagenah released TotalRecall, copying the Recall SQLite database (C:\Users\$USER\AppData\Local\CoreAIPlatform.00\UKP\{GUID}\ukg.db) and extracting all screenshots and OCR text in under 2 seconds. Database stored in plaintext SQLite, completely unencrypted when logged in. One test captured 133 windows, 36 images, found 22 instances of "password" in extracted text. Kevin Beaumont confirmed: "stored in an SQLite plaintext database" readable by any process.
What they claim: Microsoft: "We built privacy and security into Recall's design from the ground up." Post-2024 redesign added VBS Enclaves, TPM encryption, Windows Hello authentication.
What we found: March 6, 2026: Hagenah released TotalRecall Reloaded, injecting payload into AIXHost.exe to extract screenshots, thumbnails, OCR text, and CSV metadata from the redesigned encrypted Recall. Beaumont confirmed March 19, 2026: "yep, you can just read the database as a user process" in plaintext, "no AV or EDR alerts triggered." Multiple VBS Enclave CVEs: CVE-2025-47159 (kernel privilege escalation), CVE-2025-48811 (missing integrity check), CVE-2025-53717 (CVSS 7.0). DEF CON 33 (Aug 2025): Akamai researchers demonstrated malware running inside VBS enclaves invisible to detection.
What they claim: Microsoft M365 Copilot privacy docs: Copilot "inherits the same access controls and policies that your organization has already set up" and operates within existing security boundaries.
What we found: Concentric AI Data Risk Report (2025): Copilot accessed nearly 3 million sensitive records per organization on average. Black Hat USA 2024: former Microsoft Azure Security architect Michael Bargury demonstrated 15 ways to break Copilot including data exfiltration via email (indirect prompt injection), banking fraud, credential harvesting. Found 63% of Copilot Studio bots discoverable online. CVE-2025-32711 "EchoLeak" (CVSS 9.3): zero-click attack — malicious email triggers Copilot to exfiltrate sensitive data without user interaction.
What they claim: Microsoft justifies mandatory MSA as enhancing security, enabling "automatic BitLocker encryption key backup" as a key benefit.
What we found: Windows 11 24H2 enables BitLocker by default on clean installs. Recovery key silently uploaded to MSA/OneDrive with no consent prompt. Jan 2026 (Forbes): Microsoft provided FBI with BitLocker recovery keys for three laptops in Guam fraud case. Microsoft confirmed ~20 FBI requests/year. Johns Hopkins cryptographer Matthew Green: "if a company retains such access, eventually law enforcement is going to come." Senator Wyden: cloud-stored keys undermine practical encryption. Windows 11 Home: cloud backup is the ONLY key storage option.
What they claim: Microsoft positions mandatory account as a convenience feature for syncing settings and recovering passwords.
What we found: MSA ties together: name, email, phone, postal address, payment instruments, location data (GPS, cell towers, Wi-Fi, IP), browsing history (Edge, Bing), app usage across all Microsoft products, subscription data, diagnostic telemetry (cannot be fully disabled), Copilot AI interactions, BitLocker encryption keys. Copilot's "Memory" feature stores persistent personalization in user's Exchange mailbox. Cross-product data sharing toggle enabled by default. Mandatory MSA ensures all data linked to a single verified identity.
What they claim: Microsoft support page describes OneDrive folder backup as a feature you "choose to turn on." Pro shows a toggle during setup.
What we found: Reported by Neowin (Jun 24, 2024), confirmed by Tom's Hardware, gHacks, PCWorld. During clean installs, OOBE silently enables OneDrive backup for Desktop, Documents, Pictures, Music, Videos without consent dialog. Home users get NO option to decline. Thurrott reported even Pro users who declined were overridden: "If you keep declining it, it will automatically enable the feature regardless, ignoring your choice."
What they claim: Microsoft positions OneDrive as private cloud storage. OOBE does not mention content scanning or Microsoft Services Agreement when auto-enrolling backup.
What we found: Microsoft Services Agreement (Section 4) grants Microsoft "a worldwide and royalty-free intellectual property license to use Your Content" including to "make copies, retain, transmit, reformat, display, and distribute." Microsoft deploys automated scanning. Born's Tech and Windows World documented account suspensions triggered by family photos of bathing children flagged by CSAM scanning. Users on Microsoft Q&A reported accounts suspended "without warning." One user lost 650GB of business data with appeal denied. Files were auto-enrolled without consent, then subjected to scanning policies the user never agreed to.
What they claim: Microsoft BitLocker overview: "BitLocker is a built-in encryption feature that helps protect your data by encrypting your entire drive." Device Encryption page: "intended to protect your data in case your device gets stolen."
What we found: When Device Encryption auto-activates (default on 24H2 clean installs), recovery key automatically uploaded to Microsoft's servers — unencrypted, readable by Microsoft, subject to legal process. Feb 2025: Microsoft complied with FBI warrant, handed over BitLocker keys for three laptops in Guam fraud case. Microsoft spokesperson Charles Chamberlayne confirmed ~20 FBI requests/year. Keys stored in plaintext on Microsoft's servers — not end-to-end encrypted, not zero-knowledge. Johns Hopkins professor Matthew Green: "If Apple can do it, if Google can do it, then Microsoft can do it." Senator Wyden called it "simply irresponsible."
What they claim: Microsoft describes Device Encryption as a feature to "protect your data" — implying users knowingly enable a security measure.
What we found: Windows 11 24H2: Microsoft removed Modern Standby and HSTI requirements, massively expanding auto-encryption eligibility. On clean installs, encryption begins during OOBE with zero notification, zero consent, zero explanation. Protection arms when user signs in with MSA. Microsoft Q&A forums flooded: "BitLocker was automatically enabled on my drives, which is absolutely not okay." Another user: "forcefully locked out in the middle of my goddamn lecture." Registry workaround (PreventDeviceEncryption=1) requires Shift+F10 during setup — no ordinary consumer would know.
What they claim: Microsoft spokesperson Charles Chamberlayne (Jan 2026): customers are "in the best position to decide how to manage their keys."
What we found: Windows 11 requires MSA during setup (local account removed Oct 2021). When auto-encryption activates (24H2 default), recovery key auto-uploads to mandatory MSA. No prompt asking about key upload. No opt-out during standard setup. Dependency chain: forced MSA -> auto-encryption -> key auto-uploads -> Microsoft complies with law enforcement. Home users cannot use manage-bde or Group Policy to redirect key storage. Only workaround: manually delete key from account.microsoft.com/devices/recoverykey after setup — no consumer would think to do this. ACLU: "remote storage of decryption keys can be quite dangerous."
What they claim: Microsoft provides users with a choice about whether to upgrade to Windows 11.
What we found: Feb 2023 (Neowin, gHacks): Full-screen Windows 11 upgrade prompts to Win10 users with two prominent buttons — "Get it" (immediate) and "Schedule it" (delayed) — both leading to upgrade. "Keep Windows 10" was a small de-emphasized text link at bottom. Mirrors infamous GWX campaign (2015-2016) where Microsoft changed the X button to schedule upgrade instead of cancel. Teri Goldstein sued and won 0,000 after forced upgrade bricked her travel agency PC. Norwegian Consumer Council named Windows for dark patterns. Microsoft admitted it "went too far" with GWX but repeats the same pattern.
What they claim: Microsoft blog post on the day of Dutch DPA report: "It is a priority for us that Windows 10 Home and Pro are clearly compliant under Dutch law."
What we found: Oct 13, 2017: Dutch DPA found Microsoft breached Dutch law (Article 7 Wbp). VP Wilbert Tomesen: "Microsoft's operating system follows about every step you take on your computer." Full telemetry (default) collected app usage that could infer sensitive characteristics — citing "a magazine targeted at gay people," "apps indicating prayer times" (religion), "an online casino." Qualifies as sensitive data requiring explicit consent, never obtained. 4+ million Dutch devices. Undocumented data collection found including deviceID, referrer URLs, news articles read. No fine imposed.
What they claim: Microsoft positions Windows 11 as a product where "your privacy is important to us" across all editions. Privacy dashboard at account.microsoft.com/privacy available to all users equally.
What we found: Enterprise E3 costs ~/user/month standalone or ~6/user/month as M365 E3. Enterprise-exclusive privacy controls: telemetry level 0, DisableWindowsConsumerFeatures GPO, Credential Guard, AppLocker, full MDM/Intune policy. Home (39) and Pro (99) cannot achieve same privacy posture at any price. Consumer would need ~4-132/year extra just for Enterprise upgrade enabling real privacy controls.
What they claim: Microsoft describes Windows Recall as a helpful AI feature that lets you find anything you've seen on your PC
What we found: Windows Recall takes screenshots of everything on your screen every few seconds, stores them locally, and makes them searchable via AI. Security researchers demonstrated the database was stored in plaintext SQLite, accessible to any malware. Recall captures passwords, banking screens, private messages, medical records — everything visible on screen. Microsoft delayed the launch after security outcry but continues to push the feature.
What they claim: Microsoft now states: "For each new user on the device, the user can opt in to saving snapshots using Recall. If you don't choose to opt in, it will be off by default."
What we found: May-Jun 2024: Recall announced as opt-OUT (enabled by default), no ability to uninstall, screenshots stored unencrypted. UK ICO contacted Microsoft: "We expect organisations to be transparent with users about how their data is being used." Jun 2024: After massive backlash from security researchers and ICO inquiry, Microsoft reversed to opt-in and delayed launch. Apr 2025: Rolled out via KB5055627. Post-update reports: some users report Recall reactivated after Windows Update. Microsoft initially claimed uninstall ability was "just a bug."
What they claim: Microsoft: "Recall does not share snapshots or associated data with Microsoft or third parties." Also: "Windows treats material protected with digital rights management (DRM) similarly."
What we found: No official API for app developers to opt out of Recall screenshot capture. Signal (May 2025): repurposed a Windows DRM flag to black out its window, blocking accessibility features as collateral. Signal stated: "Microsoft has launched Recall without granular settings for app developers — a glaring omission." Brave (v1.81, Jul 2025): marks ALL tabs as private windows to Recall. AdGuard (v7.21, Jul 2025): added system-wide "Disable Windows Recall" toggle using DRM mechanism.
What they claim: Microsoft describes required diagnostic data as "the minimum data necessary to help keep Windows secure, up to date and performing as expected" with average event size ~1.2KB.
What we found: FB Pro GmbH (Sep 2024), using BSI's SAM (System Activity Monitor) tool from SiSyPHuS Win10 project, measured 448 data packets sent to Microsoft in one week from an idle, unhardened Windows 11 system — roughly 64 packets/day from a machine doing nothing. Hardened system with BSI/CIS configuration: zero packets. Data staged in encrypted files at %ProgramData%\MicrosoftDiagnosis before upload via ETW.
What they claim: Microsoft provides a "Diagnostic Data Viewer" tool and publishes documentation of required events, claiming transparency: "We want you to understand what's happening and have the opportunity to make this choice for yourself."
What we found: Microsoft's documentation confirms: "All diagnostic data is encrypted using Transport Layer Security (TLS) and uses certificate pinning during transfer." Certificate pinning means enterprise firewalls, network security appliances, and researchers cannot perform TLS inspection on telemetry traffic to *.events.data.microsoft.com. Microsoft tells organizations to bypass/exclude these endpoints from inspection. Creates an unfalsifiable claim: transparency through a viewer they control, while preventing independent verification.
What they claim: Microsoft: "BitLocker is particularly valuable if your device is lost or stolen, as it keeps your sensitive information secure." Marketed as protecting users.
What we found: Microsoft Support: "Microsoft doesn't have the ability to retrieve, provide, or recreate a lost BitLocker recovery key." Lost MSA access = data permanently gone. Microsoft Q&A documents dozens of permanent data loss cases: users locked out after BIOS updates, Windows Updates (KB5066835 triggered recovery screens), driver updates, TPM resets. One user lost 11 years of photos, client projects worth ,000. Dell published support article KB000358493 for BIOS-update-triggered recovery. Home users: cloud backup to MSA is the ONLY key backup option.
What they claim: Microsoft positions BitLocker as seamless protection working transparently in the background.
What we found: Tom's Hardware (Oct 2023): software BitLocker on Samsung 990 Pro 4TB — random write performance dropped 45%, PCMark 10 storage 20% slower, DiskBench 50GB copy 11% slower. Windows 11 Pro force-enables software-based BitLocker (XTS-AES 128) during install even when SSD supports hardware encryption (eDrive/OPAL) — because Microsoft disabled hardware trust after Samsung SSD flaws (2018). Users never informed of performance impact.
What they claim: Microsoft: BitLocker works by "rendering data inaccessible when BitLocker-protected devices are decommissioned or recycled."
What we found: Multiple CVEs and bypass techniques: CVE-2024-20666 (Jan 2024), CVE-2024-20665 (Apr 2024), CVE-2024-38058 (Jul 2024) — BitLocker Security Feature Bypasses. CVE-2025-21210 "CrashXTS": corrupts SYSTEM hive causing hibernation file written in plaintext — full RAM dump including volume keys. CVE-2025-48818 "BitUnlocker" (Jul 2025): full exploitation chain via Windows Recovery Environment. "Bitpixie" (38C3, Jan 2025): non-invasive software-only bypass, ~5 minute compromise of fully patched workstations. TPM bus sniffing on discrete TPMs dumps Volume Master Key. Default uses TPM-only (no PIN) — vulnerable to all above.
What they claim: Microsoft privacy page: "We rigorously protect your data using encryption and other security best practices" and "Privacy is at the center of how we build products."
What we found: Mar 8, 2024: EDPS found European Commission's use of M365 infringed "several key data protection rules" under Regulation (EU) 2018/1725. Commission's contract failed to specify what personal data was collected or for which purposes. Data transferred outside EU/EEA without adequate safeguards. EDPS ordered suspension of all M365 data flows to non-EEA entities by Dec 9, 2024. Both Commission and Microsoft appealed. Ruling established that even EU's own institutions couldn't use M365 in a privacy-compliant way.
What they claim: Microsoft marketed Recall as a personal "time machine" that would help users "find anything you've ever seen on your PC." Originally planned opt-out (enabled by default).
What we found: May 2024: UK ICO contacted Microsoft stating it was "making enquiries to understand the safeguards in place." Security experts called it "basically spyware" (Kevin Robertson, COO Acumen). Microsoft acknowledged passwords, addresses, health data would not be filtered. Under ICO pressure: postponed release, changed to opt-in, added encryption and local-only processing. ICO confirmed "substantial changes" but continues monitoring.
What they claim: BSI SiSyPHuS project and CIS Benchmarks provide hardening recommendations. Microsoft references CIS compliance on its Trust Center.
What we found: Both BSI SiSyPHuS guide and CIS Microsoft Windows 11 Enterprise Benchmark v4.0.0 (Mar 2025) written exclusively for Enterprise editions managed via Group Policy or Intune. CIS: "Windows CIS Benchmarks are written for Active Directory domain-joined systems using Group Policy, not standalone/workgroup systems." There is no CIS Benchmark for Windows 11 Home. ~30-40% of recommended GPO settings either don't exist or aren't enforced on consumer editions. Key measures like Credential Guard, AppLocker, VBS policies are Enterprise-only.
What they claim: Microsoft publicly pledges to prioritise security above all else under its Secure Future Initiative, promising transparent vulnerability disclosure and customer notification of security risks.
What we found: In May 2026, Microsoft rejected a critical privilege escalation vulnerability in Azure Backup for AKS reported by security researcher Justin O'Leary. The flaw allowed a Backup Contributor (low-privilege) user to gain cluster-admin access with zero prior Kubernetes permissions — a Confused Deputy attack. Microsoft told BleepingComputer the issue requires pre-existing administrative privileges, which O'Leary disputed as factually incorrect. CERT/CC assigned VU#284781. Microsoft then lobbied MITRE against CVE issuance. The attack path was subsequently silently patched — with no CVE, no advisory, and no customer notification.
What they claim: Microsoft: NPU requirement exists so that "app performance and system battery life are not impacted."
What we found: Real-world testing on Copilot+ PCs: NPU frequently at ~80% utilization for extended periods while Recall active. Battery drains "much faster than usual" even when unplugged. Laptop Mag recommends pausing Recall during gameplay. Feature requires 16GB RAM, 256GB SSD minimum, BitLocker, VBS, HVCI, TPM 2.0. Copilot+ PCs made up less than 2% of Windows laptops sold in early 2025.
What they claim: Microsoft: "Sensitive information filtering is on by default and helps reduce passwords, national ID numbers, and credit card numbers from being stored in Recall."
What we found: Dec 2024 (Tom's Hardware): Credit cards and passwords captured in Notepad even with "Capital One Visa" text adjacent. SSNs captured in most scenarios. Filter only worked on two specific e-commerce sites. Aug 2025 (The Register, Lenovo Yoga Slim 7x): SSN blocked when prefixed "My SS#" but captured when labeled "Soc:". Banking data including balances and deposit lists captured. Jul 2025 (Born's Tech): Credit card data and passwords still collected. Microsoft PMs Langowski and LeBlanc responded: "please let us know through Feedback Hub."
What they claim: Microsoft EVP Terry Myerson (Sep 2015): "Windows 10 collects information so the product will work better for you. You are in control with the ability to determine what information is collected." Carried forward into Windows 11 documentation.
What we found: Setting AllowTelemetry=0 (Security/Off) at HKLM\SOFTWARE\Policies\Microsoft\Windows\DataCollection is silently overridden to level 1 (Basic/Required) on Home and Pro editions. Microsoft's own documentation confirms: "Setting a value of 0 for [non-Enterprise] devices is equivalent to choosing a value of 1." Only Enterprise and Education editions honor the off setting. Home and Pro represent the vast majority of consumer installs.
What they claim: Microsoft presents the folder backup toggle as a simple on/off switch. Settings UI shows per-folder toggles suggesting symmetric behavior.
What we found: Thurrott documented (Jul 2024): "while enabling Folder Backup moves all contents from local folders to OneDrive, disabling Folder Backup does NOT do the reverse." Called it "a petty little middle finger." ElevenForum users reported Desktop appearing empty and Documents cleared after unlinking — files had moved to C:\Users\<name>\OneDrive\Documents and were not moved back. Files marked "online-only" deleted from local machine entirely.
What they claim: Microsoft positions Edge as a user choice: "Microsoft Edge runs on the same technology as Chrome, with the added trust of Microsoft."
What we found: Mozilla (Feb 2024) report "Over the Edge" by Harry Brignull and Cennydd Bowles documented five dark pattern categories: Confirmshaming (guilt-tripping switchers), Disguised Ads (Edge ads in Bing results for rival browsers), Obstruction (clicking "set as default" for Firefox leaves many file extensions assigned to Edge), Visual Interference (fake system-notification styling), Forced Action (Taskbar search, Widgets, Outlook, Teams force links to Edge via microsoft-edge:// protocol, ignoring default browser). Opera filed formal complaint (Jul 2025). Edge holds only 10.37% market share despite being pre-installed.
What they claim: Microsoft: "You can control a lot of what's shared, and even turn some things off." Group Policy AllowTelemetry accepts values 0-3, implying any edition can set level 0.
What we found: Microsoft's own documentation: "Diagnostic data off is only supported on the Enterprise, Education, and Server editions." Home users cannot access gpedit.msc without workarounds. Pro users who set AllowTelemetry=0 find value overridden to edition-allowed minimum. This is the foundation of the two-tier privacy system: same OS, different privacy rights.
What they claim: Microsoft acknowledges users can disable DiagTrack via sc config or Services.msc: "If you turn off traffic for this endpoint, diagnostic and usage information will not be sent back to Microsoft."
What we found: DiagTrack service has Recovery tab settings that automatically restart after failure. Windows feature updates repeatedly documented to re-enable DiagTrack and reset telemetry to defaults. "OS Call Home" paper (2019, Jordan University of Science and Technology) found: "even after blocking every possible setting, all ad-related connections were still generated." Users must also disable scheduled tasks under Task Scheduler Library\Microsoft\Windows\Application Experience and clear AutoLogger-Diagtrack-Listener.etl — none documented in user-facing guidance.
What they claim: Microsoft frames telemetry as a single controllable service (DiagTrack/Connected User Experiences and Telemetry) manageable through Settings or Group Policy.
What we found: Independent researchers identified 20+ distinct telemetry endpoints: v10.events.data.microsoft.com, self.events.data.microsoft.com, watson.telemetry.microsoft.com, df.telemetry.microsoft.com, oca.telemetry.microsoft.com, sqm.telemetry.microsoft.com, telemetry.appex.bing.net, telemetry.urs.microsoft.com, plus EU-specific variants. Disabling DiagTrack alone does not stop CompatTelRunner, dmwappushservice, ETW providers, or MAPS cloud uploads from communicating.
What they claim: Microsoft markets Copilot+ PCs with 40+ TOPS NPUs as enabling local AI processing for "speed, privacy, and reliability" — keeping data on-device.
What we found: Gaming Copilot does not process locally — Beaumont confirmed it "relies on the cloud" and sends screenshots to undocumented Azure endpoints. Main Copilot chat routes through Microsoft's cloud servers. NPU primarily powers Live Captions, Studio Effects, and Phi Silica — not the main chat experience. Microsoft's own docs acknowledge devices without 40 TOPS "can still access certain Copilot+ features through cloud processing" — undermining the privacy distinction.
What they claim: Microsoft presents OneDrive as optional cloud storage. Setup flow implies users control what gets synced.
What we found: Starting Jun 2024: Windows 11 auto-enables OneDrive folder backup for Desktop, Documents, Pictures, Music, Videos during clean installs — no consent dialog on Home. Thurrott reported even Pro users who explicitly declined were overridden: "If you keep declining it, it will automatically enable the feature regardless." 5GB free storage fills quickly triggering upsell. Combined with forced MSA: personal documents automatically uploaded without explicit consent.
What they claim: Microsoft Privacy FAQ: users can manage and control their data through privacy settings and the Privacy Dashboard.
What we found: On Home and Pro: "Required" diagnostic data cannot be disabled. Only Enterprise/Education can reduce to Security level. Even with all optional settings disabled, Windows 11 still sends data. Major feature updates documented to reset privacy preferences, re-enabling settings users previously disabled. AllowTelemetry=0 registry key only works on Enterprise editions.
What they claim: Microsoft documentation describes Known Folder Move as a feature that "lets you move your important folders to OneDrive" — implying user-initiated relocation.
What we found: When backup enabled (including silently during OOBE), Windows modifies registry at HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders to redirect Desktop/Documents/Pictures paths to C:\Users\<name>\OneDrive\Documents. Affects ALL applications — save dialogs, game launchers, backup software all write to OneDrive path. Users report OneDrive "keeps changing my default documents path" even after manual correction. Reverting requires registry editing; Location tab may go missing.
What they claim: Microsoft describes Storage Sense as freeing space by "removing temporary files." OneDrive Files On-Demand described as helping "access all your files without having to download them all."
What we found: Starting OneDrive build 23.066: Files On-Demand enabled by default for ALL users. Windows 11 22H2: Storage Sense defaults to converting local OneDrive files to "online-only" if not opened for 30 days. Local copies silently deleted and replaced with cloud placeholders. Files appear with cloud icon but cannot open without internet. Users traveling or offline discover files inaccessible. If user loses Microsoft account access, files permanently gone.
What they claim: Microsoft positions folder backup as a user benefit: "protect your important files" and "access your files from anywhere." No mention of AI in any OOBE screen or backup prompt.
What we found: Thurrott reported (late 2023) sources told him the real reason for automatic OneDrive Folder Backup was AI: "It's all about AI, like everything else at Microsoft these days." Getting files into cloud via auto-enrollment creates corpus for Copilot grounding. M365 Copilot already searches OneDrive content. Sep 2025 Microsoft Services Agreement update added "AI Services" section. No OOBE screen, backup prompt, or notification mentions AI as a purpose.
What they claim: Microsoft frames "Let's finish setting up your device" as helpful setup guidance to ensure device is "fully configured for use."
What we found: Nag screen appears repeatedly after Windows Updates on PCs fully set up months ago. Promotes OneDrive, Edge as default, M365 trials, Phone Link, Windows Hello. "Remind me in 3 days" is the only dismiss option — no permanent "don't ask again" on screen. Permanent disable buried at Settings > System > Notifications > Additional settings (collapsed section at bottom). Registry: SubscribedContent-310093Enabled=0 under ContentDeliveryManager. Effectively a recurring full-screen ad for Microsoft services disguised as incomplete setup.
What they claim: Microsoft: "Your privacy is important to us" and "We give you the ability to control your data, along with clear and meaningful choices."
What we found: Regulatory investigations across 5+ jurisdictions (France CNIL 2016, Netherlands DPA 2017, Canada OPC 2018, Netherlands DPIA 2018, Dutch DPA referral to Irish DPC 2019, EDPS 2024): no regulator has ever imposed a financial penalty specifically for Windows OS telemetry. Pattern: regulator investigates, finds violations, Microsoft cooperates and makes incremental changes, follow-up finds new concerns, case referred to another jurisdiction. Dutch DPA found "new, potentially unlawful instances" then referred to Ireland's DPC — more favorable enforcement environment. Only fine: EUR 60M for Bing cookies. Potential GDPR liability (4% global turnover) would be billions.
What they claim: Microsoft provides Group Policy "Turn off Microsoft consumer experiences" at Computer Configuration > Administrative Templates > Windows Components > Cloud Content with registry key DisableWindowsConsumerFeatures.
What we found: This policy is only enforced on Enterprise and Education SKUs. Setting DisableWindowsConsumerFeatures=1 via registry on Pro does nothing — OS ignores it. KB5036980 added Start Menu ads. Home/Pro users rely on per-user toggle at Settings > Personalization > Start — not as comprehensive or durable as Enterprise GPO. Related policies DisableTailoredExperiencesWithDiagnosticData and Turn off cloud optimized content have similar enterprise-only enforcement.
What they claim: Microsoft OOBE presents a "Choose privacy settings for your device" screen implying users make an informed, neutral choice.
What we found: Every OOBE toggle defaults to enabled. Design uses dark patterns: Accept button visually prominent, disabling requires toggling each individually. How-To Geek documented (2025) four patterns: default bias, repeated prompts (SCOOBE re-presents opt-ins), hidden alternatives (local account paths removed), contextual pressure (affirmative buttons larger/bolder). Feature updates can reset these settings. Most important privacy option — disabling telemetry — not even available in OOBE.
What they claim: Microsoft provides Group Policy paths for Copilot (Turn off Windows Copilot) and Recall (DisableAIDataAnalysis) suggesting administrative control.
What we found: Copilot GPO deprecated and ignored on non-Enterprise/Education SKUs as of mid-2025. Registry fallback TurnOffWindowsCopilot=1 reported non-functional on Home. Microsoft's replacement is AppLocker-based blocking — Enterprise/Education-only feature. Recall DisableAIDataAnalysis GPO restricted to Enterprise/Education. Home users rely on AllowRecallEnablement=0 registry key with no guarantee of permanence. Third-party RemoveWindowsAI on GitHub exists because official controls inadequate — must create scheduled task to re-remove AI features after updates re-install them.
What they claim: Microsoft: "Microsoft believes in and practices data minimization. We strive to gather only the info we need." Required diagnostic data described as the "minimum" necessary.
What we found: Microsoft's own documentation for Windows 11 required diagnostic events lists hundreds of event types across dozens of categories. Census events alone collect ActiveMicCount, ChassisType, ComputerHardwareID, DeviceName, Gyroscope, InventoryId, PCFP (hardware fingerprint hash), Azure domain join info. TROOPERS19 presentation documented extensive scope of ETW-based collection. This volume strains any reasonable definition of "minimum."
What they claim: Microsoft's position is that built-in Settings and Group Policy provide adequate privacy control.
What we found: O&O ShutUp10++ exposes 100+ privacy settings Windows buries or hides. DoNotSpy11 manages 9 categories. Privatezilla includes "Disable AI Tracking" preset. But structural limitations: Microsoft changes endpoints and re-enables settings with updates requiring constant tool updates; tools use same registry keys consumer editions may ignore; cannot close Enterprise-only gap for DisableWindowsConsumerFeatures or AllowTelemetry=0. A cottage industry of privacy tools existing for a product that claims to respect privacy is itself a contradiction.