| on iOS Apple record: o who you message, when you message. o Your locations (find my devices) o your voice (siri) o the location of your items (airtags) o what you look at (App telemetry) o What websites you visit (Safari telemetry) o what you buy (Apple Pay) o Who your with (location services, again) o your facial biometrics (apple photos tags people with similar faces, something FAcebook got fined for) o Who emails you, who you email With these changes, you'll need to allow apple to process the contents of the messages that you send and receive. If you read their secuirity blog it has a lot of noise about E2E security, then admit that its not practical for things other than backups and messaging. they then say they will strive to make userdata ephemeral in the apple private cloud. I'm not saying that they will abuse it, I'm just saying that we should give apple the same level of scrutiny that we give people like Facebook. Infact, personally I think we should use Facebook as the shitty stick to test data use for everyone. |
You should look more into their security architecture if you’re curious about stuff like this. The way Secure Enclave, E2EE (including the Advanced Data Protection feature for all iCloud data), etc. The reality is that they use a huge range of privacy enhancing approaches to minimize what data has to leave your device and how it can be used. For example the biometrics you mention are never outside the Secure Enclave in the chip on your phone and nobody except you can access them unless they have your passcode. Things like running facial recognition on your photos library is handled locally on your device with no information going up to the cloud. FindMy is also architected in a fully E2E encrypted way.
You can browse their hundreds of pages of security and privacy documentation via the table of contents here to look up any specific service or functionality you want to know more about: https://support.apple.com/guide/security/welcome/web