Signal has deployed a new screen security feature to block Windows Recall from capturing private chats, intensifying the privacy battle between app developers and platform owners.
At a Glance
- Signal now prevents Windows Recall from screenshotting conversations by flagging content as DRM-protected
- Windows Recall, a new Windows 11 feature, captures user activity to build a searchable history
- Experts warn Recall could compromise sensitive data despite Microsoft safeguards
- Signal users can opt out of screen security but risk exposing private messages
- Other privacy-first apps may follow Signal’s lead in defending against Recall
Windows Recall: AI Power vs. Privacy
Microsoft’s recently announced Windows Recall feature is built for convenience—but at a steep privacy cost. Integrated into Windows 11 24H2 for Copilot+ PCs, Recall takes periodic screenshots of user activity to help users “recall” what they’ve seen and done. While it includes security features like opt-in activation, biometric access, and local encryption, critics argue it still poses a massive privacy risk.
Security researchers from the University of Pennsylvania called Recall’s design “unacceptable” from a privacy and legality perspective. Despite Microsoft’s efforts to calm backlash, skepticism remains high across the tech community about any system that records everything users see.
Signal’s Privacy-First Countermeasure
In response, Signal has activated a screen security feature in its Windows app to defend user privacy. This protection works by flagging the chat window as DRM-protected content—similar to how Netflix prevents screen recording—which blocks Windows Recall from capturing screenshots of Signal messages.
Signal justified the move in a public statement: “Although Microsoft made several adjustments… the revamped version of Recall still places any content that’s displayed within privacy-preserving apps like Signal at risk. Microsoft has simply given us no other option.”
Watch a report: Signal Blocks Microsoft Recall Over Privacy Concerns.
Tradeoffs for Users
While effective, Signal’s screen security does come with tradeoffs. It also prevents users from taking their own screenshots of conversations. Users can toggle this feature under Signal Settings > Privacy > Screen Security, but doing so allows Recall to resume screen capturing.
The app warns that without screen security enabled, messages “may not be private” if Recall is active on the system. This tension between user control and app-enforced protections exemplifies the broader challenge of balancing convenience with privacy in today’s digital environment.
Broader Implications and Reactions
Signal’s move has been met with support from the cybersecurity community. Experts see this as a precedent-setting stand for application-level defense against operating system-level data capture. Some speculate this will encourage other secure apps—such as ProtonMail or Brave Browser—to implement similar measures to protect their users.
Critics of Microsoft’s Recall have also suggested that more privacy-conscious users consider disabling the feature entirely or even switching to Linux, where system-level surveillance is less common. Meanwhile, Microsoft faces renewed pressure to rework Recall’s underlying architecture to offer more transparency and user control.
Ultimately, Signal’s action marks a pivotal moment in the evolving tug-of-war between AI-enhanced functionality and digital privacy. As powerful new features like Recall emerge, the burden of privacy protection is increasingly shifting to individual developers—many of whom, like Signal, are now refusing to compromise.
