The UK government has issued a new order demanding that Apple grant officials access to encrypted iCloud backups belonging to British citizens, escalating its effort to bypass privacy protections on user data. The move, which came through a Technical Capability Notice (TCN) earlier this September, follows a failed attempt at the start of the year to require Apple to provide global access to encrypted data, including that of Americans.
The current demand specifically targets data stored by UK users, citing national security priorities such as investigations into terrorism and child sexual abuse. Earlier, a broader mandate sparked diplomatic tension: the Trump administration intervened, leading the UK to limit its demands to domestic accounts after criticism from privacy experts and U.S. officials.
Apple responded by withdrawing its Advanced Data Protection (ADP) tools from UK users in February, refusing to install any form of backdoor into its products. ADP ensures end-to-end encryption, meaning only the account holder can access their data. The company maintains it will not compromise global data security and has initiated a legal challenge against the UK’s orders, with a tribunal hearing set for January 2026.
Privacy groups warn that making an exception for one country risks global exposure. Vulnerabilities introduced for government use could be exploited by criminals or hostile states. UK authorities argue that the Investigatory Powers Act gives them powers needed to protect citizens, but critics say these demands undermine trust in digital security everywhere.
-
-
-
-