I'm going to bet that within 1 year of Win10 release to PC's, they'll be an attack technique or virus which exploits the personal assistant code to act as a keylogger. After all they've already built that feature into the software for MS's use during testing and they'd never just strip it out.