Microsoft confirmed it will provide the FBI with BitLocker encryption keys if presented with a valid legal order. These keys, which decrypt Windows PC data, are often stored in the cloud by default. The company disclosed this policy after reporting a case where keys were given to law enforcement investigating a Covid unemployment fraud plot in Guam.

This default cloud backup for encryption keys occurs when users set up a Windows 11 PC with a Microsoft Account. While Microsoft states this offers convenience for data recovery, it creates a potential privacy risk. Unlike Apple, which has historically resisted law enforcement access requests, Microsoft's policy allows it to comply with legal orders for data stored on its servers.

Security experts note that other tech companies, like Meta, use zero-knowledge architectures to encrypt cloud-stored keys, preventing even the platform from accessing them. Microsoft's approach means the keys are stored in an unencrypted state on its servers. Users concerned about privacy can check their Microsoft Account to see if their BitLocker keys are stored in the cloud and delete them.