I don’t really care about Windows copilot, so long as there’s an easy group policy to disable it.

AtlasOS is not designed with security in mind. It’s only after everyone criticized them that they added back stuff such as Windows Update and UAC.

While I can see what the author was going for, I still don’t think it’s worth it to give yet another third party app admin access in order to make managing settings slightly easier.

That’s not how it works, actually. Its more sophisticated.

How does it work then?

And no, it is more robust than that. This tool doesn’t lead to breakage. IT admins use this tool.

A sysadmin would usually use group policies to manage settings and install apps automatically, especially since they would likely be using Windows Pro or Enterprise in a work environment.

This is…not the best idea, imo. If I had to guess, I would say that it is attempting to disable diagnostic data by setting a registry key — only on Windows Home or Pro, that’s ineffective and doesn’t have any extra benefit compared to just disabling optional telemetry in the settings app. It also seems to pointlessly duplicate things the user already has control of (why does there need to be a toggle for Hyper V and Windows Subsystem Linux?) Last I checked they were pretty simple enough to turn on and off in the base system. Same goes for stuff such as Location Tracking and Activity History, which I’m fairly sure are literally already in the privacy settings.

Attempting to do large scale “debloating” will inevitably lead to system breakage and things not working. Start Menu shortcuts? They’re one click away from being uninstalled. OEM Bloat such as random third party antiviruses? You should be doing a clean install to get rid of those. Apps such as Cortana? winget uninstall. You also don’t need a third party program to manage your app updates, that’s literally what winget upgrade --all is for.

Not on iOS it doesn’t. They explicitly opt out of even iTunes backups made locally.

I don’t believe they can provide firmware updates once the chipset loses support, which is bad for security. (The same also applies for every other manufacturer, but Fairphone claims to update their phones for a longer time).

It’s unfortunate that Fairphone sucks in other ways (such as having limited firmware updates due to using an old SoC, as I understand it).

I hate how they blow fuses to permanently disable security features when the bootloader is unlocked.