• SkyNTP@lemmy.ml
    link
    fedilink
    English
    arrow-up
    0
    ·
    6 months ago

    Right. Microsoft themselves just announced a feature to disable screenshoting some webpages in Edge, which is a complete 180 from recall.

    I expect windows to be split into two tiers of products again: the free version that is paid for by ads/tracking/AI bloatware possibly even mandatory cloud connectivity, and an enterprise version with all off that off, but that is paid.

    • gravitas_deficiency@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      0
      arrow-down
      1
      ·
      6 months ago

      They’re gonna need a way for IT departments to categorically disable Recall from doing any visual capture/scraping of data. I work in a HIPAA-constrained industry, and the entire concept of MS’s Recall is 100% a non-starter. The legal liability alone categorically disqualifies it from being an acceptable piece of software to run on ANY system that has access to ANY PII or PHI.

      • tal@lemmy.today
        link
        fedilink
        English
        arrow-up
        0
        ·
        6 months ago

        Hmm. Do you allow people to VPN in from non-company-controlled laptops? Because I figure that anyone doing work at home is going to be maybe unwittingly having local copies made of data that they’re working with.

        • gravitas_deficiency@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          0
          arrow-down
          1
          ·
          edit-2
          6 months ago

          No, we do not. Our corporate network connectivity is pretty tightly controlled, and non-issue devices are not permitted on sensitive networks - either VPN or on-premises. I haven’t bothered asking, but I would assume they’re doing system-wide MAC filters as one of the security layers.

          I mean yeah it’s possible to exfil data, but it definitely takes some effort, and doing so would be a willful violation of some pretty significant security policies (up to and including “you’re fired, security will escort you out”, depending on the data and the circumstances”), and, you know, it’s nice having a job. Not to mention, I think HIPAA and GDPR privacy stuff, while often tedious in terms of implementation, are absolutely good and worthwhile things for consumers and users, and should not be ignored for expediency or profit.