Two senior U.S. lawmakers have strongly criticized the United Kingdom’s demand for access to encrypted Apple user data, calling it a “dangerous” and “shortsighted” move that threatens both privacy and cybersecurity.
In a letter to Director of National Intelligence Tulsi Gabbard, Senator Ron Wyden and Congressman Andy Biggs urged the U.S. government to take action against the UK’s request, warning that it could undermine American security.
“The U.S. government must not permit what is effectively a foreign cyberattack waged through political means,” the lawmakers wrote. They called on Gabbard to issue the UK an ultimatum: either withdraw the request or risk serious consequences, including a reevaluation of intelligence-sharing agreements and cybersecurity programs between the two nations.
The BBC has reached out to the UK government for comment, but Apple has declined to respond directly. However, the tech giant has repeatedly emphasized that it considers privacy a fundamental human right and has historically resisted government pressure to weaken encryption.
What Is the UK Requesting?
Reports of the UK’s request for access to encrypted iCloud data surfaced last week, with sources confirming that the demand applies to Apple’s Advanced Data Protection (ADP) service.
ADP provides end-to-end encryption, ensuring that only the account holder—not even Apple—can access stored content. The service is optional, meaning not all users enable it.
The UK Home Office, citing the Investigatory Powers Act (IPA), has declined to confirm or deny the existence of the request, stating that it does not comment on operational matters.
The IPA requires technology companies to provide data to law enforcement agencies, but the details of such orders are legally confidential.
Concerns Over Global Security Risks
Wyden and Biggs argue that if Apple were to comply, the move would jeopardize U.S. national security by creating a backdoor that could be exploited by adversaries such as China and Russia.
“If Apple is forced to build a backdoor in its products, that backdoor will end up in Americans’ phones, tablets, and computers, undermining the security of Americans’ data,” the lawmakers wrote.
Because Apple uses the same encryption technology across all regions, any compromise in the UK could directly impact American users, including government agencies that rely on Apple products for sensitive data storage.
Precedent of Resistance Against Government Access
The UK’s request has sparked alarm among privacy advocates, with Privacy International calling it an “unprecedented attack” on individual data rights.
Apple has historically refused to comply with similar government demands. In 2016, the company famously defied a U.S. court order to unlock the iPhone of a gunman involved in a mass shooting. The FBI later accessed the device without Apple’s help.
A similar case arose in 2020, when Apple declined to unlock the iPhones of a shooter at a U.S. air base—again, the FBI eventually found a workaround.
Potential Impact on Apple’s UK Market
Apple has previously stated that it would rather withdraw encryption services like ADP from the UK than create a government-mandated backdoor.
Meta-owned WhatsApp has also signaled that it would prefer being blocked in the UK rather than weaken its encryption.
However, the UK’s Investigatory Powers Act applies globally, meaning that even if Apple stops offering ADP in the UK, it could still be legally obligated to comply due to its presence in the UK market.
While UK officials insist that national security concerns justify the request, experts fear it could set a precedent for governments worldwide to demand similar access, ultimately eroding encryption protections on a global scale.