Apple Inc. has removed its Advanced Data Protection (ADP) feature from iCloud accounts in the United Kingdom, citing government demands for access to encrypted user data. The decision, which prevents new UK users from enabling ADP and will eventually require existing users to disable it, comes after reports that UK security services sought backdoor access to encrypted backups.
"Apple can no longer offer Advanced Data Protection in the United Kingdom to new users, and current UK users will eventually need to disable this security feature," Apple spokesperson Julien Trosdorf said in a statement to The Verge. He added, "We are gravely disappointed that the protections provided by ADP will not be available to our customers in the UK given the continuing rise of data breaches and other threats to customer privacy."
ADP, introduced in late 2022, provides end-to-end encryption for iCloud backups, photos, notes, and other files, making them accessible only on users' own devices. With this security measure removed, Apple will now have the ability to access stored files and share them with law enforcement upon request, though such disclosures would still require a legal warrant.
The move follows reports that the UK Home Office, under Home Secretary Yvette Cooper, issued a technical capability notice (TCN) under the country's Investigatory Powers Act of 2016-often referred to as the "Snoopers' Charter"-compelling Apple to provide a mechanism for government access to encrypted data. While Apple has not explicitly confirmed receiving such a demand, disclosing the existence of a TCN itself would constitute a criminal offense under UK law.
"We have never built a backdoor or master key to any of our products or services and we never will," Apple stated, reaffirming its stance against government-mandated access to private data. The company emphasized that some iCloud data types-such as passwords, health data, and payment information-will remain encrypted even in the UK.
The UK government has defended its push against encryption, arguing that such security measures hinder efforts to investigate crimes, including terrorism and child exploitation. A government spokesperson previously told The Guardian in 2022, "End-to-end encryption cannot be allowed to hamper efforts to catch perpetrators of the most serious crimes."
Apple has pushed back against this argument in the past. In March 2024, during a British parliamentary debate over amendments to the Investigatory Powers Act, the company stated, "There is no reason why the UK should have the authority to decide for citizens of the world whether they can avail themselves of the proven security benefits that flow from end-to-end encryption."
Apple is not alone in offering encrypted cloud backups. Google has provided end-to-end encryption for Android backups since 2018, and Meta offers encrypted WhatsApp backups, both of which remain available in the UK. However, Apple's decision to disable ADP raises concerns within the technology and cybersecurity industries, with experts warning of broader implications.
Apple "is effectively smashing open Pandora's box and hoping the chaos stays neatly inside," Graeme Stewart, a cybersecurity executive at Check Point, told Sky News. He warned that encryption is not just a tool for criminals but a fundamental protection for law-abiding individuals, businesses, and critical infrastructure.
Legal experts also suggest that Apple's decision could challenge the UK's ambitions of maintaining a pro-innovation reputation. Robert Peake, a technology partner at Keystone Law, described the move as "calling the government's bluff" and argued that the UK could face mounting pressure to reverse course as the decision threatens its standing as a tech-friendly business environment.
