Apple halts Advanced Data Protection in the UK: What it means for your iCloud data
Apple’s decision to withdraw its most robust security feature for British users has ignited fresh debate about data privacy and government surveillance.
Late last week, the tech giant announced it would be removing the opt-in Advanced Data Protection (ADP) from iCloud in the UK, rather than bow to a request from the Home Office for so-called “backdoor” access.
Advanced Data Protection applies end-to-end encryption to iCloud backups, photos, notes and other content, meaning Apple itself cannot access those files—let alone share them with law enforcement. If an ADP user loses access to their account, not even Apple can recover that information. Crucially, UK authorities had wanted the ability to unlock that data under certain circumstances, a demand Apple declined to meet.
By removing ADP, Apple avoids the need to create a method for government agencies to bypass this highest-level encryption—something cybersecurity experts say would expose users to significant privacy risks. Apple has not specified precisely when existing UK ADP users will lose access, nor how many customers it affects. Nonetheless, the move has sparked criticism of UK government policy, while some privacy advocates warn other countries could soon follow suit and request similar measures.
Those who never enabled ADP will notice no change, as iCloud still uses standard encryption for backups and other content. That data remains accessible to Apple and can be handed over to authorities if legally required. UK customers who had ADP enabled are set to lose this benefit at an unspecified future date, reverting to standard encryption.
Google employs standard encryption on a broad range of services and offers enhanced security for Android device backups through a random key, further protected by a user’s lock-screen passcode or PIN. However, Google Photos and Drive are not end-to-end encrypted by default. The company also provides an Advanced Protection Program for those seeking higher levels of account security, though it has not yet encountered an Apple-style dispute over “backdoor” demands in the UK.
Critics of the Home Office’s stance—including digital rights groups—fear that forcing Apple to weaken its strongest security features undermines trust in tech products and potentially leaves users vulnerable. “If Apple had created a backdoor for the UK, it would exist for users worldwide,” cautioned the Electronic Frontier Foundation.
Apple said in a statement it has “never built a backdoor or master key to any of our products, and we never will”, underlining the firm’s long-established pro-privacy ethos.
The question is whether this tussle marks a watershed moment in Britain’s approach to encryption. While law enforcement insists it requires the means to investigate serious crime, privacy experts argue that any backdoor can be misused. For now, Apple has chosen to stand by its philosophy—at the cost of pulling ADP from the UK market.
