Apple has announced the immediate removal of its Advanced Data Protection (ADP) feature for iCloud in the United Kingdom. This decision follows government demands for backdoor access to encrypted user data. Bloomberg first reported this significant development.
What is Advanced Data Protection?
ADP for iCloud is an optional feature that ensures only users’ trusted devices can access the encryption keys needed to unlock data stored in the cloud. This feature protects sensitive information, including iCloud Backup, Photos, Notes, Reminders, Safari Bookmarks, voice memos, and data associated with Apple’s applications.
Statement by Apple
In a statement to Bloomberg, Apple expressed disappointment over the situation. The company stated, “We are gravely disappointed that the protections provided by ADP will not be available to our customers in the UK given the continuing rise of data breaches and other threats to customer privacy.” Apple emphasized that ADP offers end-to-end encryption, meaning only the user can decrypt their data on trusted devices.
Customers currently using ADP will need to manually disable the feature for an unspecified period. Apple noted that it cannot disable ADP automatically on their behalf.
Government Demands from Apple
This unprecedented move comes just weeks after reports indicated that the U.K. government had ordered Apple to create a backdoor for accessing any Apple user’s iCloud content. According to The Washington Post, the U.K. Home Office issued this demand under the Investigatory Powers Act (IPA), also known as the Snoopers’ Charter. This order requires a blanket capability to view fully encrypted material, rather than just assistance in accessing a specific account.
With the removal of ADP in the U.K., Apple now only provides standard data protection for iCloud. While users’ data remains encrypted, the encryption keys are stored in Apple’s data centers. This setup allows law enforcement to access the data with a warrant.
Political Response
In response to these developments, U.S. Senator Ron Wyden and Congressman Andy Biggs recently sent a letter to Tulsi Gabbard, the Director of National Intelligence. They urged the U.K. to retract its order, warning that such actions threaten the privacy and security of both American citizens and the U.S. government. They added, “If the U.K. does not immediately reverse this dangerous effort, we urge you to reevaluate U.S.-U.K. cybersecurity arrangements and programs as well as U.S. intelligence sharing with the U.K.”
