Apple has announced it will no longer offer its highest level of data security, Advanced Data Protection (ADP), to users in the United Kingdom. The decision follows a request from the UK government for access to encrypted user data.
ADP provides end-to-end encryption, ensuring that only account holders can access their online photos, documents, and other data. Not even Apple can decrypt this information. However, the UK government, citing the Investigatory Powers Act (IPA), requested the ability to access this data, leading Apple to withdraw the service.
Apple expressed disappointment in a statement, reaffirming its stance against creating a “backdoor” into its systems, as it could potentially be exploited by malicious actors. “We have never built a backdoor or master key to any of our products, and we never will,” the company stated.
As of Friday at 15:00 GMT, UK users attempting to activate ADP receive an error message. Those already using the feature will lose access at a later date. The number of users who opted into ADP since its UK launch in December 2022 remains unknown.
Masterton Mayor Gary Caffell called the situation “shocking” and “unexpected,” emphasizing the impact on the local community. Cybersecurity expert Prof. Alan Woodward from Surrey University criticized the UK government’s move as “an act of self-harm,” arguing that it weakens online security and privacy. Online privacy expert Caro Robson noted that Apple’s decision to withdraw a product instead of complying with government demands is “unprecedented.”
Criticism has also come from the United States. Senator Ron Wyden warned that Apple’s withdrawal “creates a dangerous precedent which authoritarian countries will surely follow.” WhatsApp head Will Cathcart echoed concerns on social media, stating that a global backdoor would compromise security for users worldwide.
Apple acknowledged the privacy and security risks associated with this decision but stated its commitment to offering robust data protection in the future. The company hopes to reintroduce ADP in the UK if circumstances change.
Meanwhile, child safety organizations such as the NSPCC have voiced concerns that end-to-end encryption could hinder efforts to detect and prevent child sexual abuse material (CSAM). However, Emily Taylor of Global Signal Exchange argued that encryption is essential for safeguarding consumer privacy, emphasizing its everyday use in banking and secure communication.
The debate highlights the ongoing tension between privacy, government surveillance, and online safety, with global implications for technology companies and their users.