Understanding Apple’s Privacy and iCloud Features

Jun 4, 2025

Privacy and iCloud: Understanding Apple's Advanced Data Protection

Overview

  • Apple markets its products as privacy-centric, often suggesting that user data on iPhones is private.
  • iCloud is Apple's cloud service for backing up photos, contacts, emails, calendars, notes, messages, etc.
  • Despite privacy claims, iCloud data may not be as private as users think.

Introduction of Advanced Data Protection

  • In late 2022, Apple introduced "Advanced Data Protection," enhancing privacy and security by offering end-to-end encryption for additional iCloud categories.
  • Users must manually enable this feature as it is not on by default.
  • Without activation, Apple can access backed-up data.

Default End-to-End Encrypted Categories

  • Passwords and keychain
  • Payment information
  • Health data
  • Home data

Additional Categories Protected by Advanced Data Protection

  • iCloud Backup (device and Messages backup)
  • iCloud Drive
  • Photos
  • Notes
  • Reminders
  • Safari Bookmarks
  • Siri Shortcuts
  • Voice Memos
  • Wallet passes
  • Freeform

How to Enable Advanced Data Protection

  1. Update all devices to the latest software.
  2. Enable Account Recovery:
    • Setup a recovery contact with an Apple device.
    • Ability to set a 28-character recovery key.
  3. Ensure 2FA is enabled on your Apple ID.
  4. Set a passcode lock on your device.
  5. Toggle on Advanced Data Protection for iCloud backups.

Limitations

  • Certain data isn’t end-to-end encrypted:
    • iCloud Mail
    • Contacts
    • Calendars
  • All files’ metadata remains visible to Apple.
  • Apple cannot help recover account if password is forgotten; rely on recovery contact or key.

Alternative Backup Options

  • Consider non-Apple services due to data collection concerns:
    • Use more private email options.
    • Proton’s end-to-end encrypted calendar.
    • Photos and files backup alternatives: Proton Drive, Synology, Nextcloud.

Conclusion

  • Apple offers better security and privacy than some competitors but users should be proactive in enabling features like Advanced Data Protection.
  • NBTV promotes privacy education, supported by community donations and resources like "Beginner’s Introduction to Privacy."

Personal Note

  • Mention of CactusCon, a privacy-focused hacker conference.
  • NBTV invites support through donations and purchase of their educational book.

Full transcript