EFF Calls on Apple to Let Users Encrypt iCloud Backups as Part of 'Fix It Already' Initiative

by

The Electronic Frontier Foundation (EFF), perhaps the most well-known digital rights non-profit, today launched a new "Fix It Already" campaign with the aim of getting technology companies to implement new privacy features in areas where privacy is lacking.

According to the EFF, the issues that it is demanding a fix for are "well-known privacy and security issues" that have "attainable fixes." From Apple, the EFF wants the company to implement user-encrypted iCloud backups that are inaccessible to the company and thus to law enforcement.

appleuserencryptedicloudbackups
iCloud content uploaded to Apple is encrypted at the location of the server and, with the proper legal requests, Apple can provide ‌iCloud‌ information that includes name, address, email, mail logs with date/time stamps, photos, Safari browsing history, iMessages, and more, with full details outlined by Apple on its privacy site. [PDF]

The EFF says that Apple should "let users protect themselves" and elect for "truly encrypted ‌iCloud‌ backups."

Apple has not encrypted ‌iCloud‌ backups because doing so would prevent Apple from being able to restore ‌iCloud‌ backups for users who have forgotten their passwords. As the EFF points out, though, Apple CEO Tim Cook has said in the past that Apple may move towards encrypted ‌iCloud‌ backups in the future. From an interview Cook did with German site Der Spiegel:

There our users have a key and we have one. We do this because some users lose or forget their key and then expect help from us to get their data back. It is difficult to estimate when we will change this practice. But I think that will be regulated in the future as with the devices. So we will not have a key for it in the future.

The EFF has demands for other technology companies in addition to Apple. Android, it says, should let users deny and revoke apps' internet permissions, while Twitter should end-to-end encrypt direct messages and Facebook should stop using phone numbers provided for account creation for targeted advertising.

WhatsApp should obtain user consent before adding users to groups, Slack should give free workspace administrators control over data retention, and Verizon should stop pre-installing spyware on some smartphones.

Tag: EFF

Popular Stories

iPhone 17 Pro Dark Blue and Orange

iPhone 17 Release Date, Pre-Orders, and What to Expect

Thursday August 28, 2025 4:08 am PDT by
An iPhone 17 announcement is a dead cert for September 2025 – Apple has already sent out invites for an "Awe dropping" event on Tuesday, September 9 at the Apple Park campus in Cupertino, California. The timing follows Apple's trend of introducing new iPhone models annually in the fall. At the event, Apple is expected to unveil its new-generation iPhone 17, an all-new ultra-thin iPhone 17...
Read Full Article61 comments
iPhone 17 Pro Iridescent Feature 2

iPhone 17 Pro Clear Case Leak Reveals Three Key Changes

Sunday August 31, 2025 1:26 pm PDT by
Apple is expected to unveil the iPhone 17 series on Tuesday, September 9, and last-minute rumors about the devices continue to surface. The latest info comes from a leaker known as Majin Bu, who has shared alleged images of Apple's Clear Case for the iPhone 17 Pro and Pro Max, or at least replicas. Image Credit: @MajinBuOfficial The images show three alleged changes compared to Apple's iP...
Read Full Article78 comments
iphone 16 pro ghost hand

iPhone 17 Pro: 5 Reasons Not to Upgrade This Year

Monday September 1, 2025 4:35 am PDT by
Apple will launch its new iPhone 17 series this month, and the iPhone 17 Pro models are expected to get a new design for the rear casing and the camera area. But more significant changes to the lineup are not expected until next year, when the iPhone 18 models arrive. If you're thinking of trading in your iPhone for this year's latest, consider the following features rumored to be coming to...
Read Full Article114 comments
xiaomi apple ad india

Apple and Samsung Push Back Against Xiaomi's Bold India Ads

Friday August 29, 2025 4:54 am PDT by
Apple and Samsung have reportedly issued cease-and-desist notices to Xiaomi in India for an ad campaign that directly compares the rivals' devices to Xiaomi's products. The two companies have threatened the Chinese vendor with legal action, calling the ads "disparaging." Ads have appeared in local print media and on social media that take pot shots at the competitors' premium offerings. One...
Read Full Article210 comments
iOS 18 on iPhone Arrow Down

Apple Preparing iOS 18.7 for iPhones as iOS 26 Release Date Nears

Sunday August 31, 2025 4:35 pm PDT by
Apple is preparing to release iOS 18.7 for compatible iPhone models, according to evidence of the update in the MacRumors visitor logs. We expect iOS 18.7 to be released in September, alongside iOS 26. The update will likely include fixes for security vulnerabilities, but little else. iOS 18.7 will be one of the final updates ever released for the iPhone XS, iPhone XS Max, and iPhone XR,...
Read Full Article47 comments

Top Rated Comments

cmChimera Avatar
cmChimera
85 months ago
I definitely agree with them.
Score: 34 Votes (Like | Disagree)
ersan191 Avatar
ersan191
85 months ago
Just make it optional - people who know what they are doing can enable it and the regular people who are more likely to forget their passwords can leave it off.
Score: 22 Votes (Like | Disagree)
cmaier Avatar
cmaier
85 months ago
We should be very careful what we ask for. While I value privacy, there are legitimate reasons for someone else to have the key to our files. For example, should something happen to your spouse or parent (stroke, severe accident, etc), all their info would permanently be locked out, including all their photos. We live in an age where the photos of all our loved ones reside on our iPhones and iCloud. There must be a way to salvage them.
If i wanted my heirs to have access to my stuff after I die I would be sure to arrange for that. I don’t need apple to do my estate planning.
Score: 15 Votes (Like | Disagree)
Apple_Robert Avatar
Apple_Robert
85 months ago
Glad to see the EFF publicly pushing for this. Apple needs to take heed.

I want safety. I promise not to complain if I go senile and forget by password.
Score: 13 Votes (Like | Disagree)
Ldubrov Avatar
Ldubrov
85 months ago
We should be very careful what we ask for. While I value privacy, there are legitimate reasons for someone else to have the key to our files. For example, should something happen to your spouse or parent (stroke, severe accident, etc), all their info would permanently be locked out, including all their photos. We live in an age where the photos of all our loved ones reside on our iPhones and iCloud. There must be a way to salvage them.
Score: 9 Votes (Like | Disagree)
zorinlynx Avatar
zorinlynx
85 months ago
Why can't it be treated the same way as FileVault?

If you forget your FileVault password, you lose your data, period. Just make it ABSOLUTELY CLEAR to the user that they must not forget their password or they will lose their iCloud backup data. They could even make it a choice; I believe FileVault asks if you want to let Apple keep a copy of the recovery key.

I know Apple is really big on keeping users from shooting themselves in the foot, but for those of us who understand the risks, we should be allowed to secure our data further.
Score: 8 Votes (Like | Disagree)
Read All Comments