Apple has removed its Advanced Data Protection (ADP) feature for iCloud backups in the United Kingdom, marking a major shift in its privacy policies. The decision comes in response to a UK government directive under the Investigatory Powers Act (IPA) 2016, which requires tech companies to provide a way for authorities to access encrypted data when needed.
What is Advanced Data Protection?
ADP, introduced in December 2022, provides end-to-end encryption for iCloud data, including device backups, messages, photos, and notes. With this feature, even Apple cannot access user data, ensuring a higher level of privacy. However, UK users who have not already enabled ADP will no longer have access to it, and new users are barred from activating it. Those who had previously turned it on can continue using it for now, but future updates may phase it out completely.
Government Surveillance vs. User Privacy
The UK government has been pushing for broader surveillance powers under the IPA, which allows authorities to demand access to encrypted communications. Apple has consistently resisted these demands, arguing that creating a backdoor for law enforcement weakens security for all users. However, the UK law requires companies to comply with government requests before making security changes available to the public.
Apple has openly criticised the UK’s stance on encryption, stating that it could lead to mass surveillance and expose users to cyber threats. The company has also warned that weakening encryption in one country could set a global precedent, pressuring other governments to demand similar access.
Impact on Users
The removal of ADP in the UK means iCloud backups are no longer fully encrypted, making them accessible to Apple and, potentially, to law enforcement agencies. While messages and other data stored on a user’s device remain encrypted, cloud backups now present a security risk. Privacy advocates warn that this change could lead to an increase in government surveillance and potential data breaches.
Apple has assured users that it will continue to prioritise data security while complying with local laws. However, this decision raises concerns about the future of encryption policies worldwide, as governments in other countries may demand similar measures.
Potential Global Implications
Experts suggest that Apple’s decision to disable ADP in the UK might encourage other nations to impose similar restrictions. The debate over encryption has been ongoing for years, with governments arguing that strong encryption hinders criminal investigations, while privacy advocates maintain that backdoors compromise security for everyone.
As encryption policies continue to be a point of contention, tech companies may face increasing pressure to strike a balance between user privacy and legal compliance. For now, UK users seeking stronger data protection may need to rely on third-party encryption services to safeguard their information.
