Apple has announced it will discontinue its Advanced Data Protection (ADP) service for users in the United Kingdom. The decision follows a request by the UK’s Home Office to gain access to data encrypted by ADP, a request Apple has declined. As a result, the tech company has decided to stop new sign-ups for ADP and will gradually revoke access for existing users at a later date.
What is Advanced Data Protection?
Advanced Data Protection is an opt-in feature that provides enhanced security for data stored in iCloud accounts. This includes backups, photos, notes, and voice memos. The service applies end-to-end encryption, ensuring that only the user can access their data, and even Apple cannot view it. This extra layer of protection contrasts with standard encryption, which Apple can access if required by law enforcement.
However, users should be aware that losing access to their ADP-protected account can result in the permanent loss of data, as Apple does not hold a key to decrypt the information.
Impact on UK iCloud Data
For UK users who have not enabled ADP, there will be no change to the level of protection for their iCloud data. Data will continue to be secured with standard encryption, and Apple will still have access to it under legal obligations. However, the option to apply end-to-end encryption for iCloud storage will no longer be available.
Users who had already activated ADP before the change will lose access to the feature at a later date, although Apple has not specified when or how many users will be affected.
Security Concerns and Industry Response
Experts have expressed concerns about the potential impact of removing ADP. Some cybersecurity professionals have warned that this move could lead to broader implications for global privacy standards. Graeme Stewart from Check Point noted that while law enforcement must have a warrant to access iCloud data, other governments may seek similar “backdoor” access to encrypted data. Critics have compared the idea of such backdoors to leaving a house key under a doormat, potentially exposing users to security risks.
The Electronic Frontier Foundation (EFF) also raised alarms, suggesting that compliance with the UK’s request could set a precedent, affecting not just UK users, but individuals globally. Apple has repeatedly stated that it has never created and will not create a backdoor or master key to its products.
Comparisons to Other Tech Companies
Like Apple, Google employs standard encryption across its services to protect user data. Since 2018, Google has also provided additional protections for Android backups through a security key encrypted by a user’s lock-screen passcode. However, certain services, like Google Photos and Google Drive, do not have end-to-end encryption. Google also offers an Advanced Protection Program for users seeking extra security, relying on passkeys for account verification.
Samsung’s Galaxy smartphones also offer enhanced data protection features, such as encrypting backups of messages, call logs, apps, and settings.
While Apple’s decision to remove ADP has raised concerns, it underscores the ongoing balancing act between privacy, security, and government access to encrypted data.
Stay on top of supply chain logistics news updates at The Supply Chain Report. Visit ADAMftd.com for free international trade tools.
#ApplePrivacy #DataProtection #UKUsers #TechSecurity #ApplePolicy #DigitalPrivacy #CyberSecurity
