Apple has decided to suspend its Advanced Data Protection (ADP) feature for iCloud in the United Kingdom with immediate effect. This action follows demands from the government for a backdoor to access encrypted user data.
The change was initially reported by Bloomberg.
The ADP feature for iCloud is an optional setting designed to ensure that only a user’s trusted devices have access to the encryption keys needed to unlock data stored in iCloud. This includes iCloud Backup, Photos, Notes, Reminders, Safari Bookmarks, voice memos, and other data associated with Apple’s applications.
Apple shared its frustration in a statement to Bloomberg, saying, “We are deeply disappointed that the ADP protections will no longer be accessible to our customers in the UK, especially considering the increasing frequency of data breaches and other growing risks to customer privacy.”
The company emphasized that ADP secures iCloud data with end-to-end encryption, meaning that only the user who owns the data can decrypt it, and only on their trusted devices.
For users who have already activated ADP, Apple has clarified that they will need to manually disable the feature for an unspecified period, as Apple “does not have the ability to automatically disable it on their behalf.”
This decision follows reports from just weeks ago, indicating that the U.K. government had instructed Apple to create a backdoor to access any iCloud content from Apple users. According to The Washington Post, the U.K. Home Office issued the demand under the Investigatory Powers Act (IPA), also known as the Snoopers’ Charter. The request seeks the ability to view encrypted material broadly, rather than merely providing assistance to decrypt specific accounts.
As a result of removing ADP in the U.K., Apple will now only provide standard data protection for iCloud. This means that while the data is still encrypted, the encryption keys are stored in Apple’s data centers. This setup makes the data accessible to law enforcement agencies with the appropriate legal warrants.
Just last week, U.S. Senator Ron Wyden and Congressman Andy Biggs sent a letter to Tulsi Gabbard, the Director of National Intelligence, urging the U.K. to reverse its demand. They warned that the request could jeopardize the privacy and security of both American citizens and the U.S. government.
“If the U.K. if this harmful initiative is not promptly reversed, we strongly encourage a reassessment of the cybersecurity partnerships and programs between the U.S. and U.K., as well as U.S. intelligence sharing with the U.K.,” they added.
