I found a new registry key that you might find interesting to add in a future update. Only works for 24H2/25H2. [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy] "LetAppsAccessSystemAIModels"=dword:00000002 Adding this to the registry forces denial of text and image generation access for all apps using on-device Windows AI models. It disables generative AI features in supported apps, prevents apps from prompting users for permission, and blocks related telemetry.
Thanks. I discovered 2 more while I was at it Code: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy] "LetAppsAccessSystemAIModels"=dword:0000002 "LetAppsAccessAdvertisingId"=dword:00000002 "LetAppsAccessGenerativeAI"=dword:00000002 I also changed their values to "0" 0 → Disable (force deny) 2 → Let user decide I did the same thing with "disable app permissions" in the disable_telemetry scripts -- changed them all to "0" More corrections to the scripts I'll be double checking the scripts to see if the registry values are correct
I found some more that could be potentially added. [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search] "DisableSearchAds"=dword:00000001 Disables ads and sponsored content in Windows Search across the device, including the Start menu search box, search results, and related features like "search highlights" or dynamic suggestions. [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System] "EnableSmartNotifications"=dword:00000000 "DisableSystemPromotions"=dword:00000001 First one turns off proactive AI enhancements in the Notification Center, reducing background processing and potential privacy concerns from behavior tracking. Standard notifications still work. Second one disables system-level promotions and suggestions, blocking content like recommended apps, tips, shortcuts, and ads in the Start menu, Settings app, lock screen, and File Explorer. [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection] "DisableAIPoweredDiagnostics"=dword:00000001 This disables AI-powered processing of diagnostic data sent to Microsoft as part of Windows telemetry. This prevents the use of machine learning/AI models to analyze crash reports, performance logs, and other optional diagnostic telemetry for generating insights, recommendations, or aggregated reports (e.g., for bug fixes or feature improvements).
I double checked this from a few sources, and it shows the numbers mean the following: 0 = User in control 1 = Force allow 2 = Force deny (disabled)
Right the original value of "2" is correct. A few sources kept "flip-floping" between 0 and 2 because they claimed it can get confusing i had to manually check myself changing the values from 0 to 2, restarting my computer and checking system settings > privacy and the correct value for force deny is "2"
Spent a few days checking the script(s) There are more additions, corrections and restructuring I will be testing it first on my system before releasing it