Turn THIS on if you use iCloud!

00:00

Many people who use Apple products  assume that all their data with them  

00:04

is private because of the company’s aggressive  marketing on the topic. They say things like:

00:09

“Some things shouldn’t be shared.  iPhone helps keep it that way,”

00:13

and “Privacy. That’s iPhone.”

00:15

Privacy is something we’ve come to  immediately associate with Apple.

00:19

Now if you use an iPhone or other Apple products,  

00:22

you probably also use the company’s cloud  storage service, iCloud, to back up your photos,  

00:28

contacts, emails, calendars, notes,  messages, voice memos, and other data.

00:33

But your iCloud is probably NOT as  private as you think. Let me explain.

00:38

In late 2022, Apple did introduce  end to end encryption for a range  

00:42

of iCloud categories. Sensitive  and personal data like photos,  

00:47

notes, and iMessage backups were now  protected from unauthorized access.

00:52

With the addition of a setting called “Advanced  

00:54

Data Protection” Apple significantly  enhanced user privacy and data security.

01:00

Things protected with this setting can only be  

01:02

accessed by the user -- not even  Apple can access these files.

01:07

But it’s super important that users know that,  

01:09

even though this enhanced privacy setting  exists, and despite Apple, in general,  

01:15

being a vocal proponent of privacy, your  iCloud is probably not at all private.

01:20

Because this new setting’s end to end  encryption is NOT turned on by default.

01:25

So if you’ve been happily backing up  all of your private files to iCloud  

01:29

all this time and never bothered to  turn on Advanced Data Protection,  

01:33

Apple has been able to see  everything you’ve uploaded.

01:36

In this video I’m going to give an overview of  exactly what is being protected with Advanced  

01:41

Data Protection, how to turn it on, and  I’ll also talk about its limitations,  

01:45

and other options that you might  use for your backups instead.

01:48

Let’s start by diving into the  details of Advanced Data Protection.

01:52

It’s a setting that gives you a choice to better  protect your privacy on iCloud if you want to,  

01:57

and take your data out of the  reach of even Apple itself.

02:01

Once enabled, it makes sure that data can only  

02:03

be decrypted on devices where you're  signed in with your Apple ID account.

02:08

Whether you turn on Advanced Data  Protection or not, Apple does already  

02:11

protect some sensitive data categories  with end to end encryption by default.

02:16

These include things like  your passwords and keychain,  

02:19

payment information, health data and home data.

02:22

Enabling Advanced Data Protection, adds a  whole bunch more categories to that list.

02:26

iCloud Backup including device and Messages  backup, iCloud Drive, Photos, Notes, Reminders,  

02:32

Safari Bookmarks, Siri Shortcuts, Voice  Memos, Wallet passes, and Freeform.

02:37

Now let’s dive into exactly how to set it up.

02:40

First you'll first have to update all your  devices to the latest software versions.

02:44

This means every device where you’re signed  in with your Apple ID, otherwise you’ll  

02:49

have to sign out on those devices, because  they won’t support end to end encryption.

02:53

Next, you’ll have to enable Account Recovery.

02:56

If you lose access to your account, Apply  won’t be able to resend you your log in.

03:01

So you’re required to set  up a recovery contact first,  

03:04

which ensures that you can still recover  your data if you forget your password.

03:08

First, open Settings on your iPhone  and click on your Apple ID at the top.

03:13

Then select iCloud. Click Advanced Data  Protection and click Account Recovery

03:18

Then you’ll add your recovery contact,  

03:20

which is a trusted person who also owns an  Apple device, like a friend or family member.

03:25

Once you confirm them as your recovery contact,  they will receive recovery codes if you ever  

03:30

forget your password. You'll also have the  option to set a 28-character recovery key,  

03:35

which you should write down somewhere  safe or store in a password manager.

03:39

The final two things that you’ll need in order to  turn on Advanced Data Protection are 2FA on your  

03:44

Apple ID and a passcode locking your device, both  of which you hopefully already have set up anyway.

03:50

Now you should see the option to toggle on  Advanced Data Protection for iCloud backups.

03:54

Once Advanced Data Protection is  enabled, it’s worth noting that,  

03:58

by default, you won’t be able to  access your data via iCloud.com.

04:02

If you’d like this feature, you’ll  have to toggle it on manually,  

04:05

but keep in mind that this allows the web browser  and Apple to have access to your encryption keys.

04:11

That's it. Your iCloud backups are now protected  with end-to-end encryption. It means that only  

04:16

devices signed in to your iCloud account, and  that you have explicitly trusted, can access  

04:22

your files. Your decryption keys are held only  on these devices, so nobody else can decrypt  

04:27

and view your sensitive digital assets. Turning  this on is a huge step forward for your privacy.

04:34

But now let’s talk about some of the  limitations of Advanced Data Protection.

04:38

First, even if you turn on the new  Advanced Data Protection feature,  

04:42

three important kinds of data are never end-to-end  encrypted: iCloud Mail, Contacts, and Calendars.

04:49

Apple says that it can’t encrypt  this data because it wants these  

04:52

services to remain interoperable with  other email and calendar providers.

04:56

So keep in mind that no matter what you do, Apple  will be able to scan your emails, calendar events,  

05:02

and see personal details about people in your  network. But on top of that, whether you have  

05:07

Advanced Data Protection turned on or not, all  your files’ metadata is still visible to Apple.

05:13

This includes: File type, File size,  How many times a photo has been viewed,  

05:17

Whether a file was pinned or marked as favorite,  

05:19

usage data, such as timestamps of when  the file was created or last modified.

05:24

Finally, you are now in control  of protecting your own data.

05:28

You can’t go to Apple to regain access to your  account, because Apple itself doesn’t have access.

05:34

So make sure your recovery contact is  up to date, and make sure that you have  

05:38

your recovery key saved somewhere really  safe. If you ever forget your password,  

05:43

these recovery methods are your only options.

05:46

Now I want to briefly mention some alternative  options to using the Apple ecosystem for backups.

05:51

Why might you want to do this?

05:53

Well, in other videos we talk about the huge  amount of data that Apple collects from users,  

05:58

especially through things like telemetry,  and how they bypass VPNs for a lot of this  

06:03

collection. So some people might  want to limit their exposure to the  

06:06

Apple ecosystem as much as they can,  even while still using Apple devices.

06:11

So we’d recommend not using apple mail,  calendar, or contacts because of their lack  

06:15

of end to end encryption. We have videos diving  into more private email options. For calendars,  

06:21

I personally like Proton’s end to end  encrypted calendar, and my contacts are  

06:25

all stored locally on my Graphene phone  and not backed up to any central server.

06:29

When it comes to backing up photos and files,  we just released a video exploring 3 options  

06:34

that we like: Proton Drive, and 2 self hosting  options: Synology and Nextcloud. These are all  

06:41

private backup options that you can set up to  happen automatically, so that you never have to  

06:45

think about it again. So check out those videos  if you want to be walked through the process.

06:49

In general, Apple products  do offer a higher level of  

06:52

security and privacy compared to top competitors.

06:55

For example, stock iPhone is far more  private and secure than stock Android.

07:00

But don’t presume that your iphone is more  private than it actually is. And if you’re  

07:05

already logged into an iCloud account, absolutely  make sure that you have Advanced Data Protection  

07:11

turned on. It’s an easy step that goes a long way  to improving the privacy of your digital files.

07:18

As always, there were no sponsors in this video.  NBTV is funded entirely by community donations.  

07:23

So if you’d like to support our free educational  videos, head to nbtv.media/support. Or take a look  

07:29

at our book, “Beginner’s Introduction to Privacy”,  which also supports our channel. Thanks so much  

07:34

for liking, sharing, and subscribing,  and for watching through till the end.

07:38

I just got back from CactusCon, which  is a hacker conference in Arizona,  

07:41

and they had the best theme this  year, which was “Big Hacktar”,  

07:44

a Big Brother spin off. So, a big shout out to  them for putting a focus on privacy at their  

07:49

conference. And this little guy is gonna go into  my set. And thanks so much to everyone who came  

07:54

to say “hi”! It was super awesome to meet so  many of you. If you ever see me at an event,  

07:59

come say hi because you will get one of these  little NTV stickers. Stickers! He’s adorable!