Our products and features include innovative privacy technologies and techniques designed to minimize how much of your data weĀ ā or anyone else ā can access. And powerful security features help prevent anyone except you from being able to access your information. We are constantly working on new ways to keep your personal informationĀ safe.
The groundbreaking privacy protections of AppleĀ Intelligence* give you peace of mind that no one else can access your data ā not even Apple.
With AppleĀ Intelligence, many requests are processed on your iPhone, iPad, or Mac. For complex requests, Private Cloud Compute extends the privacy and security of your Apple devices into the cloud to unlock even more intelligence for you. Your data is never stored and is used only to respond to your requests. And independent experts can inspect the software that runs on these servers to verify its privacy promise.
On-device processing
The cornerstone of AppleĀ Intelligence is on‑device processing. Weāve integrated it deep into your iPhone, iPad, and Mac and throughout your apps, so itās aware of your personal data, without collecting your personal data. This is only possible through Appleās unique integration of hardware and software and yearslong investment in building advanced silicon for on‑deviceĀ intelligence.
Private Cloud Compute
When you make a request, AppleĀ Intelligence analyzes whether it can be processed on the device. If it requires greater computational capacity, it can draw on Private Cloud Compute and send only the data relevant to your task to be processed on AppleĀ siliconābased servers. Your data is never made accessible to Apple ā itās used exclusively to fulfill your requests. And independent experts can inspect the code that runs on the servers to verify our privacy promise. Private Cloud Compute uses cryptography to help ensure that your iPhone, iPad, and Mac will refuse to talk to a server unless that serverās software has been publicly logged forĀ inspection.
Our approach to responsible AIĀ development.
AppleĀ Intelligence is designed with our core values at every step and built on a foundation of groundbreaking privacy innovations. We do not use our usersā private personal data or their interactions when training our foundation models.
Safari includes state-of-the-art features to help protect your privacy, defending you against cross-site tracking and minimizing the data passed to third parties. And Private Browsing adds even more protections, such as locking your windows when youāre not using them.
You may have noticed that when you look at something to buy online, you suddenly start seeing it everywhere else you go on the web. This happens when a third party tracks cookies and other website data to show you ads across various websites.
Intelligent Tracking Prevention uses machine learning and on-device intelligence to fight this cross-site tracking. It hides your IP address from trackers so what you look at on the web remains your business ā not an advertiserās. And you donāt have to change any settings for these protections because Intelligent Tracking Prevention is on by default.
Private Browsing
Safari protects your privacy automatically. Private Browsing adds even more protections. When itās activated, Safari wonāt add the sites you visit to your history, remember your searches, or save any information from forms you fill out online ā and advanced tracking and fingerprinting protections go even further to help prevent websites from tracking or identifying your device. Known trackers are completely prevented from loading on pages, and link tracking protection removes tracking added to URLs as you browse. Content blocker support is designed so that it canāt send developers information about what youāre looking at. And private browsing windows automatically lock ā requiring your device password to be unlocked ā when youāre not using them.
Passkeys
Passkeys replace passwords with an easier and safer sign-in method. Your private key is never kept on a web server, so you donāt have to worry about website leaks compromising your accounts. And passkeys never leave your device and are specific to the site you created them for, making it almost impossible for them to be phished. Passkeys are end-to-end encrypted and sync across your Apple devices through iCloud Keychain. On Apple devices, simply use FaceĀ ID or TouchĀ ID to sign in. For websites or apps on non-Apple devices, use your saved passkey by scanning the QR code with your iPhone or iPad and using FaceĀ ID or TouchĀ ID toĀ authenticate.
Privacy Report
Your Privacy Report shows you all the cross-site trackers that are being blocked by Intelligent Tracking Prevention in Safari. You can access your report from the Safari toolbar and the Safari startĀ page.
Password monitoring
Safari checks to see whether your saved Keychain passwords have been compromised in data breaches. It uses secure and private cryptographic techniques to regularly check derivations of your passwords against a publicly available list of breached passwords. If Safari identifies a potentially compromised password, your device will notify you. Your password information is never revealed as part of this process ā not even to Apple.
Social widget tracking prevention
Social widgets embedded on websites, such as like buttons, share buttons, and comment fields, can be used to track you even if you donāt click them or use them. Safari blocks this tracking by default, and it prevents social widgets from accessing your identity unless you grant themĀ permission.
Fingerprinting defense
Safari works to prevent advertisers and websites from using the unique combination of characteristics of your device to create a āfingerprintā to track you. These characteristics include the device and browser configuration, and fonts and plug-ins you have installed. To combat fingerprinting, Safari presents a simplified version of the system configuration so more devices look identical to trackers, making it harder to single yours out. This protection is on by default, so there are no extra steps for you toĀ take.
Search
With the Smart Search field in Safari, you can type website names, web addresses, and search queries all in one place. Safari minimizes the amount of data sent to third-party search engines ā for example, it wonāt share cookies or your precise location, which may happen if you search by other means. Safari also offers the option to set DuckDuckGo as your default search engine, allowing you to search the web without beingĀ tracked.
Extension controls
Browser extensions can help you do many things, like saving money on purchases or improving your grammar. However, they can also be used to track you, taking note of what you browse and even what you type. With Safari extension controls, you can grant extensions access to your information just for one day, just for this current website, orĀ always.
Safari Privacy Overview
Like all of our products and services, Safari has built-in technologies designed to safeguard your personal information. Your privacy is protected automatically ā without having to change your default settings.
Many personalized features are created using data on your device. And data that is sent from your device to the Maps service is associated with random identifiers, not your identity, so Apple doesnāt have a profile of your movements andĀ searches.
Personalization
Many helpful features, like Visited Places or finding your parked car, are created using data on your device. This helps minimize the amount of data sent to Apple servers.
End-to-end encryption
Maps keeps your personal data in sync across all your devices using end‑to-end encryption. Your Significant Locations and collections are encrypted end‑to‑end so Apple cannot read them. And when you share your ETA with other Maps users, Apple canāt see your location.
Random identifiers
There is no sign-in when you start using Maps. The data that Maps collects while you use the appĀ āĀ like search terms, navigation routing, and traffic information ā is associated with random identifiers, not your AppleĀ Account. These identifiers reset themselves as you use the app to ensure the best possible experience and to improveĀ Maps. When you share ratings or photos with Maps, the information that you share is associated with your AppleĀ Account.
Location fuzzing
Maps goes even further to obscure your location on Apple servers when you search using a process called āfuzzing.ā Because your location can give away your identity, Maps converts the precise location where your search originated to a less-exact one within 24 hours. Apple doesnāt retain a history of what youāve searched for or where youāveĀ been.
Maps extensions
Maps extensions that are used in ride-booking and reservation apps run in their own sandboxes and share permissions with their parent apps. For ride-booking apps, Maps shares only your starting point and destination with the extension. And when you reserve a table at a restaurant, the extension knows only the point of interest you tapped.
Photos
Face recognition and scene and object detection are done completely on your device rather than in the cloud. This allows Apple to provide you with these advanced features without accessing your photos. And apps can access your photos only with your permission.
Lock Hidden and Recently DeletedĀ albums in Photos
The Hidden and Recently Deleted albums in Photos are locked by default. You can unlock them using your deviceās authentication methodĀ ā FaceĀ ID, TouchĀ ID, or yourĀ passcode.
Memories and SharingĀ Suggestions
The Memories and Sharing Suggestions features in the Photos app use on-device intelligence to analyze your photos and organize them by faces, places, and more to help you find them easily. Because this all happens on your device, Apple can provide you with these advanced features without accessing your photos.
iCloud Photos
If you choose to back up your photo library to iCloudĀ Photos, Apple protects your photos on our servers with encryption. Photo data, like location or albums organized by places, can be shared between your devices with iCloudĀ Photos enabled. And if you choose to turn off iCloudĀ Photos, youāll still be able to use on-device analysis.
Sharing controls
macOS, iOS, and iPadOS let you decide if you want to include the photoās location, edit history, and depth data when you share a photoĀ ā whether youāre sharing it with a friend or with anĀ app.
Third-party app permissions
Photo pickers help you select which photos to share with an app while keeping the rest of your library private. When apps ask for your entire photo library, youāll be able to see how many photos and videos they can access and a sample of what they can use and share. Youāll also receive occasional reminders so you can check what youāre sharing ā and make changes if you like.
Apps
If an app requests access to your photos, you can choose which images youād like to share without granting access to your entire library. Or if an app wants to add a photo to your library, you can allow it to do so without accessing your photos. You can also choose to grant an app general access to your photos.
FaceTime, Messages, andĀ More
Your iMessage and FaceTime conversations are encrypted end-to-end, so they canāt be read while theyāre sent between devices. Mail helps hide your activity from unwanted senders.
New
Call Screening
Call Screening helps eliminate distractions by automatically answering calls from unknown numbers and asking the caller for their name and reason for calling. Once the caller has provided this information, your phone will ring and you can decide whether to pick up, decline, or ask for more information. Call Screening processing occurs entirely on your device and isnāt shared with Apple.1
Call recording
When you start recording live phone calls or FaceTime audio calls from the Phone app, it automatically announces to all participants present at that time that the call is being recorded.
Mail
Mail Privacy Protection helps protect your privacy from prying email senders. It hides your IP address so senders canāt create a profile with your other online activity or see where you are, and they canāt tell if youāve opened their email. And Mail categorization, which organizes your email based on relevance and priority, is processed entirely on your device to protect your privacy and minimize data collection.
End-to-end encryption
End-to-end encryption protects your iMessage and FaceTime conversations across all your devices. With watchOS, iOS, and iPadOS, your messages are encrypted on your device so they canāt be accessed without your passcode. iMessage and FaceTime are designed so that thereās no way for Apple to read your messages when theyāre in transit between devices. You can choose to automatically delete your messages from your device after 30 days or a year or keep them on your device indefinitely. Messages sent via satellite also use end-to-end encryption to protect your privacy.
FaceTime
Apple doesnāt store your FaceTime and Group FaceTime calls on our servers. And during transit, these calls are protected with end‑to‑end encryption. Anyone can now join you in one-on-one and Group FaceTime calls from their browsers instantly with the same privacy protections. No Apple device or loginĀ required.
And starting with iOS 15, iPadOS 15, and macOS Monterey, you can send friends and family a link to connect on FaceTime ā even if theyāre using Windows or Android.2 Itās still end-to-end encrypted, so your call is as private and secure as any other FaceTime call.
Live Voicemail
When someone leaves a phone message, Live Voicemail shows a live transcription as soon as the caller starts to speak. When Silence Unknown Callers is turned on, calls from unknown numbers will go directly to Live Voicemail without ringing. Calls identified as spam by carriers wonāt appear as Live Voicemail, and will instead be instantly declined. Thanks to the power of the Neural Engine, Live Voicemail processing occurs entirely on your device, and isnāt shared with Apple.
NameDrop
NameDrop is a feature in AirDrop that lets you hold your iPhone near another iPhone to share contact information with only your intended recipients. You can also choose the specific contact information you want to share ā and just as important, which information you donāt want to share.
iMessage apps
iMessage apps ā which let you share stickers, songs, and more without leaving Messages ā do not have access to participantsā actual contact information or conversations. iOS and iPadOS provide each app with a random identifier for each participant, which is reset when the app is uninstalled.
Link Tracking Protection
When you share links in Messages, the extra information that some websites add to their URLs will be removed to prevent them from tracking you or the person you shared the link with.
iCloud Backup
iMessage and SMS messages are backed up on iCloud for your convenience, but you can turn iCloud Backup off whenever you want. And Apple never stores the content of FaceTime calls on anyĀ servers.
SharePlay
SharePlay allows you to share experiences from Apple or third-party apps in FaceTime calls. The content that apps exchange over SharePlay is end-to-end encrypted, just like other FaceTimeĀ calls.
Siri
Siri is designed to do as much learning as possible offline, right on your device. Searches and requests are associated with a random identifier ā a long string of letters and numbers ā not your AppleĀ Account.
And for AppleĀ Intelligence requests that use Private Cloud Compute, your data is never stored or made accessible to Apple.
On-device suggestions
When you ask Siri to read or search for information on your device, such as in Messages and Notes, and when Siri provides suggestions, like through widgets and Siri Search, all your personal information is kept on your device rather than being sent to Apple servers. Siri Suggestions in the QuickType keyboard are made possible by an Apple-developed neural network language process that also runs directly on your device.
Random identifiers
Although Apple attempts to do as much as possible on your device, when you use certain featuresĀ ā like making a voice request to Siri or searching in Spotlight or SafariĀ ā real-time input is needed from Apple servers. When we do send information to a server, we protect your privacy by using random identifiers, not your AppleĀ Account. Information like your location may be sent to Apple to improve the accuracy of responses, and we allow you to disable Location Services at anyĀ time.
On-device processing
The audio of your requests is processed entirely on your device unless you choose to share it with Apple. The Apple Neural Engine enables speech recognition models with the same high quality as server-based speech recognition.3
Siri and Dictation
The longer you use Siri and Dictation, the better they understand you and improve. To help Siri and Dictation recognize your pronunciation and provide better responses, certain information such as names of your contacts or music, books, and podcasts you enjoy is sent to Apple servers using encrypted protocols. Siri and Dictation do not associate this information with your Apple Account, but rather with a random, device-generated identifier. You can reset that identifier at any time by turning Siri and Dictation off and back on, effectively restarting your relationship with them. When you turn Siri and Dictation off, your Siri data associated with the Siri identifier is deleted. The learning process starts over when you turn Siri back on. On-device dictation helps protect your privacy further by performing all processing completely offline.
Improving Siri andĀ Dictation
By default, Apple does not retain audio recordings of Siri and Dictation interactions. Computer-generated transcripts are used to improve Siri and Dictation. You can opt in to help Siri improve by allowing Apple to store and review audio of your Siri and Dictation interactions, and you can opt out at any time. These audio samples are associated with a random identifier instead of your AppleĀ Account. In addition, you can delete all the Siri and Dictation requests, including audio recordings and computer-generated transcripts, associated with the random identifier from Appleās servers at any time. Note that requests more than six months old and the small sample of requests that have been reviewed may not be deleted, as they are no longer associated with the randomĀ identifier.
When you use Safari or Spotlight in iOS, iPadOS, or macOS, your searches are sent to Apple servers along with contextual information like your location or actions taken in the search session to provide you with the most relevant suggestions. This information is associated with a random identifier, not your AppleĀ Account, so that searches and locations are not connected to you personally. For suggestions in Spotlight and Safari, a new random identifier is generated every 15 minutes, and your precise location is never shared with the server. Instead, an approximate location from your device is sent using location fuzzing. You can choose to disable suggestions in Spotlight and Safari. If you choose to disable location-based suggestions, Apple will still use your IP address to determine a general location to make suggestions moreĀ relevant.
Wallet helps keep your eligible ID cards, keys, credit and debit cards, transit cards, boarding passes, tickets, and more secure.
Adding cards
When you add a credit, debit, prepaid, or transit card (where available) to Apple Pay, information that you enter on your device is encrypted and sent to Apple servers. Apple decrypts the data, determines your cardās payment network, and reencrypts the data with a key that only your payment network (or any providers authorized by your card issuer for provisioning and token services) can unlock.
After your card is approved, your bank, your bankās authorized service provider, or your card issuer creates a device-specific Device Account Number, encrypts it, and sends it along with other data to Apple. The Device Account Number canāt be decrypted by Apple and is stored in the Secure Element on your device.
Keys and ID
Eligible corporate passes and home, hotel, and car keys can all be added to one convenient location in Wallet. You can add your eligible driverās license or state ID to Wallet on your iPhone and a paired Apple Watch and present it securely at select TSA checkpoints. Your eligible passes, keys, and ID are protected and stored in the Secure Element on your device, just like your cards.4
AppleĀ Pay
Apple doesnāt know what you buy, including where you bought it or for how much, when you pay with a credit or debit card.
Unique Device AccountĀ Number
When you add a credit, debit, or prepaid card to AppleĀ Pay through the Wallet app, your device securely sends your card information, along with other information about your account and device, to your card issuer. Your actual card numbers are never stored on the device or on Apple servers. Instead, a unique Device Account Number is created, which is encrypted in a way that Apple canāt decrypt, and stored in the Secure Element on your device. The Device Account Number in the Secure Element is walled off from your operating system and is not stored on AppleĀ Pay servers or backed up to iCloud. Your Apple Pay purchase history is yours, and isnāt used by Apple to serve you ads.
In stores, payments are processed by using the Device Account Number and a transaction-specific, dynamic security code. Neither Apple nor your device shares actual credit or debit card numbers with merchants. If you use a rewards card, Apple requires any personally identifiable information ā like your email address or phone number ā to be encrypted when itās sent. No rewards information is ever shared without your permission.
In-app and website purchases
When you make payments in an app or on a website, Apple receives your encrypted transaction information and reencrypts it with a developer-specific key before itās sent to the developer. When you make payments on a Mac with TouchĀ ID or the TouchĀ Bar, the payment is processed in the SecureĀ Element, a certified chip designed to store your payment information safely. On other Mac computers, your Mac and any iOS or iPadOS device signed in to the same AppleĀ Account communicate over an encrypted channel either locally or via Apple servers. Apple requires all apps and websites using AppleĀ Pay to have a privacy policy you can view, so you know how your data is being used.
AppleĀ Cash
When you use AppleĀ Cash in apps and on the web, your actual AppleĀ Cash account number isnāt shared with the merchant. And Apple created AppleĀ Payments Services LLC, a wholly owned subsidiary, to protect your privacy by storing how much you sent, to whom, and your balance separately from the rest ofĀ Apple.5
AppleĀ Card
The unique security and privacy architecture created for Apple Card prevents Apple from knowing where you shopped, what you bought, orĀ how much you paid.
On-device transaction history
AppleĀ Card provides useful features like your transaction history and spending summaries right in the Wallet app on your iPhone using on-device intelligence. So that data doesnāt need to be sent to Apple servers.
Issuing bank
Goldman Sachs, the issuing bank for Apple Card, does not sell your info to third parties for marketing orĀ advertising.
Health
Appleās health products are designed to help keep your data secure and protect your privacy. You have control over which information is placed in the Health app and which apps can access your data throughĀ it.
You decide what information is placed in the Health app as well as who can access your data. When your phone is locked with a passcode, TouchĀ ID, or FaceĀ ID, all your health and fitness data in the Health app ā other than your MedicalĀ ID ā is encrypted. Any Health data backed up to iCloud is encrypted both in transit and on our servers. And if you use a recent version of watchOS and iOS and turn on two-factor authentication and a passcode, your health and activity data will be backed up in a way that Apple canātĀ read.
Activity sharing andĀ deletion
You can choose to share your Activity data from your AppleĀ Watch with other users. If you later decide to stop sharing, then the other userās iPhone will delete historical data stored in the Fitness app. You also have the ability to temporarily hide yourĀ activity.
Health sharing
Share your health data with people important to you or those who are caring for you. Choose which data and trends to share, including heart health, activity, labs, vitals, MedicalĀ ID, cycle tracking, andĀ more.
HealthKit
HealthKit allows developers to create health and fitness apps that can share data with the Health app or with each other. As a user, you have control over which elements of your HealthKit information are shared with which apps. Apple requires every app in the AppĀ Store to provide a privacy policy for you to review, including apps that work with HealthKit. Apps that work with HealthKit are prohibited fromĀ using or disclosing HealthKit data to third parties for advertising or other dataĀ mining purposes, and apps can only share data for the purpose of improving your health, fitness, or health research with your permission. When you choose to share that data with trusted apps, it goes directly from HealthKit to the third-party app and does not traverse Appleās network.
ResearchKit and CareKit
ResearchKit and CareKit are open source software frameworks that take advantage of the capabilities of iPhone. ResearchKit enables developers to create apps that let medical researchers gather robust and meaningful data for studies. And CareKit is a platform for developers to create apps that help individuals take a more active role in their own well-being.
With ResearchKit, you choose which studies you want to join, and you control the information you provide to individual research apps. Apps using ResearchKit or CareKit can pull data from the Health app only with your consent. Any apps built using ResearchKit for health-related human subject research must obtain consent from the participants and must provide informationĀ about confidentiality rights and the sharing and handling of data.
These apps must also be approved by an independent ethics review board before the study can begin. For certain ResearchKit studies, Apple may be listed as a researcher, receiving data from participants who consent to share their data with researchers, so we can participate with the larger research community in exploring how our technology could improve the way people manage their health. This data is received in a way that does not directly identify the participants to Apple.
Appleās research platform makes it simple to bring together researchers with people eager to help advance medical discovery. You can sign up for a study (or studies) right from your iPhone. If you meet the criteria for a given study, then with your consent you can join. Any data collected through the AppleĀ Research app will be encrypted if you have a passcode set on your device. Once shared, the data is stored securely within Apple in a system designed to meet the technical safeguard requirements of the Health Insurance Portability and Accountability Act (HIPAA). Apple will not have access to any contact information or other data that directly identifies you through the Research app. And you can withdraw from any study at any time, ending any future dataĀ collection.
Improve Health & Activity and Improve Wheelchair Mode
Improve Health & Activity and Improve Wheelchair Mode send data from iPhone and AppleĀ Watch to Apple so we can increase the effectiveness of our health and fitness features. This includes data that is shown in the Health, Activity, and Fitness apps, movement measurements, which other fitness apps you have installed, your approximate location, and how long you have been using AppleĀ Watch. The data is not used for any other purpose and does not include personally identifiableĀ information.
Location Services
Location Services privacy controls are a powerful way to manage which apps have access to yourĀ location.
Location permissions help you control the location data that you pass to apps using fine-grained controls. You can choose to grant an app access to your location once or anytime you useĀ it.
Approximate location
Starting with iOS 14, iPadOS 14, and watchOS 7, you can choose whether apps can see your approximate location ā within an area of about 10 square miles ā rather than your exact location. So you can use apps to find nearby restaurants or check the local weather without providing more information than you needĀ to.
Background tracking notifications
Receive notifications when an app is using your location in the background, so you can decide whether to update yourĀ permission. Background tracking notifications include a map that shows you the places where an app used your location in the background.
Wi-Fi and Bluetooth location privacy enhancements
Starting in iOS 13 and iPadOS 13, API changes limit the kinds of apps that can see the names of Wi-Fi networks you connect to, which makes it harder for apps to determine your location without your consent. To protect you against apps using Bluetooth to determine your location without your consent, iOS and iPadOS include controls so that an app must ask before accessing Bluetooth for any other purpose than playing audio. And Bluetooth settings allow you to change whether an app has access at anyĀ time.
Location controls for shared photos
macOS, iOS, and iPadOS let you decide if you want to include the location when you share a photo, whether youāre sharing it with a friend or with an app.
Sign in withĀ Apple
Sign in to apps and websites quickly and easily without having your activity tracked or profiled byĀ Apple.
Sign in with Apple lets you sign in to apps and websites using the AppleĀ Account you already have. When you use Sign in with Apple, the most information websites and apps can ask for is your name and email address. And Apple wonāt track or profile you when you use Sign in withĀ Apple.
Hide your email
If you donāt want to share your email address with a particular app or website, you can choose to hide it. You can also choose to have Apple create a unique email address that forwards to your realĀ address.
Two-factor authentication
Sign in with Apple requires your AppleĀ Account to be protected with two-factor authentication, so that access to accounts in your favorite apps is more secure.
Upgrade to Sign in withĀ Apple
Developers can offer you the option to upgrade existing app accounts using Sign in with Apple. You can quickly and easily sign in to your accounts using Face ID or Touch ID and take advantage of Appleās two-factor authentication for improved privacy and security, without having to set up a new account.
News and Entertainment
Our news and entertainment services use information about what you read, listen to, and watch to help personalize your experience, with built-in privacy protections.
Random identifier in AppleĀ News
The more news articles you read, the more personalized the AppleĀ News app becomes. Information Apple collects about articles you read is used to improve AppleĀ News. This information is linked to an AppleĀ Newsāspecific identifier and is not linked to other services. You can reset your AppleĀ News identifier at any time by clearing your history in Saved Stories. Recommendations for channels, topics, and content are created on your device. By default, AppleĀ News uses iCloud to sync the channels and topics you follow, your reading history, and your reading preferences across yourĀ devices.
On-device suggestions in AppleĀ News
Siri suggests stories, channels, and topics you may like based on on-device information pulled from the apps you use and the websites you visit in Safari. And when you search in AppleĀ News, your query is combined with information about recently used and popular apps on your device to provide you with relevant search results.
AppleĀ News subscriptions
If you buy a third-party subscription in AppleĀ News, you can choose whether to share your personal information with the publisher. If you have enabled notifications for an AppleĀ News channel, Apple stores that information to notify you about breaking events, including from your subscription publications.
Apple Music doesnāt contain advertisements from other companies. To help personalized features like Listen Now, Autoplay, personal mixes, and new release notifications reflect your musical tastes, Apple collects some information about your activity when you play or browse music. This is detailed during setup in āAbout Apple Music & Privacy.ā Apple Music is obligated to share some aggregated data with partners, like record labels, for purposes such as royalty payments to artists, but it only does so with industry‑leading privacyĀ protections.
Apple Music does not share data with partners using any user or device identifiers. And if you donāt want to keep your music collection on our servers, you can opt out of iCloud Music Library. iOS and iPadOS put you in control of which apps can access your Music account and associated details. The opt‑in Apple Music Friends feature lets you share your favorite music ā and decide which friends can see the music in your profile. Apple Music only has access to the contacts you choose to add to Apple Music Friends specifically, not your entire contactĀ list.
To offer personalized recommendations and improve your AppleĀ TV experience, Apple collects information about your purchases, downloads, and activity in the AppleĀ TV app, including what you watch on the AppleĀ TV app, connected apps, and your location. You can choose to share what you watch in connected apps to bring all your content together, and you have control over the viewing history used by Apple to provide you with personalized recommendations. You can delete the viewing history Apple holds from connected apps entirely, or choose to delete it app byĀ app.
AppleĀ Arcade games do not collect any personal data about you or track any information about how you play without your permission. Games in AppleĀ Arcade contain no in-game advertising and no third‑party tracking.
Every app in the AppĀ Store is required to follow strict guidelines on protecting your privacy and to provide a self-reported summary of how it uses your data. And apps must ask for your permission before accessing things like your photos orĀ location.
App guidelines
On the AppĀ Store, Apple requires app developers to adhere to specific guidelines designed to protect user privacy and security. Apple also requires them to provide a privacy policy that you can review. When Apple becomes aware of an app that violates our guidelines, the developer must address the issue or the app will be removed from the AppĀ Store. Apps go through a review process before becoming available on the AppĀ Store.
Developers are required to self‑report how they are using your data āā such as usage data, contact information, or location āā and whether that data is used to track you. You can view each self-reported Privacy Nutrition Label on the appās product page on the AppĀ Store at any time, including before you choose to download. This is part of ongoing work to increase transparency and control over your data, and Apple will continue to update this feature and work with developers to ensure that users can make informedĀ choices.
Once an app is installed on your device, you are prompted for permission the first time it tries to access information such as your location or photos. You can make changes to the permissions youāve granted. And iOS 11 or later and iPadOS give you the control to provide your location to any app only while youāre using it. Apple also makes sure that there are certain types of data on your device that apps simply canāt access, and that there is no way for an app to ask for complete access to all your data.
App Clips
When you use an AppĀ Clip, developers can only ask for a limited set of data. When an AppĀ Clip requires access to your location, camera, or other sensitive data, it will require the same consent as a full app. You can also choose to grant permission to all AppĀ Clips. AppĀ Clips arenāt allowed to ask your permission to track you across other companiesā apps and websitesĀ āā only full apps can doĀ that.
App tracking
An app tracking section in Settings lets you easily see which of your apps have been given permission to track you, so you can change your preferences and disable apps from asking in the future. iOS 14.5 and iPadOS 14.5 or later require developers to get your permission before tracking your activity across other companiesā apps and websites for ads or data brokers.
iCloud
What you store in iCloud is protected with industry‑leading encryption, privacy, and security. Developers do not have access to your Apple Account.
Data encryption
iCloud secures your information ā like photos, contacts, and notes ā by encrypting it when itās in transit, storing it in an encrypted format, and safeguarding your encryption keys in Apple data centers. Both Apple and third‑party data centers may be used to store and process your data. When processing data stored in a third‑party data center, encryption keys are accessed only by Apple software running on secure servers, and only while conducting the necessary processing. For additional security, eligible users can enable Advanced Data Protection, which uses end‑to‑end encryption to ensure that iCloud data in many categories can be decrypted only on your trusted devices, protecting your information even in the case of a data breach in the cloud.
Two-factor authentication is an extra layer of security for your AppleĀ Account. Itās designed to help ensure that youāre the only person who can access your account, even if someone else knows your password. Itās easy to set up and easy to use.
With iCloud sharing, the identities of participants are not made available to anyone who has not been invited to and accepted a private share. The names of your shared files and the first and last name associated with your Apple Account are available to anyone who has access to the sharing link, including Apple. In iOS 11 or later, iPadOS, and macOS High Sierra or later, end‑to‑end encryption in iCloud syncs certain types of personal data, such as your Health data, across all your devices in such a way that Apple cannot read or access it.
CloudKit
CloudKit is a way for third-party developers to use iCloud storage in their own apps. CloudKit helps keep your preferences, settings, and app data up to date across your devices. Developers use CloudKit to make it easier for you to use their apps because you donāt have to sign in separately. By default, developers donāt have access to your AppleĀ Account, just a unique identifier. If you give your permission, developers can use your email to let others find you in their app. Youāre always in control of these permissions and can turn them on or off at any time. Your data associated with CloudKit isnāt shared with developers unless you choose to share or postĀ publicly.
Account Recovery Contacts
Choose one or more people you trust to become an Account Recovery Contact to help you reset your password and regain access to your account. Apple does not know who your trusted contacts are, only whether you have any.
Digital Legacy program
The Digital Legacy program lets you designate people as Legacy Contacts so they can access your account and personal information in the event of your death. Apple does not know who your Legacy Contacts are, only whether you haveĀ any.
iCloud+
iCloud+ includes great features to help protect your privacy when browsing the internet and using email.
Hide My Email
Hide My Email allows you to create unique, random email addresses that forward to your personal inbox so you can send and receive email without having to share your real emailĀ address.
iCloud Private Relay
iCloud Private Relay is an internet privacy service that uses an innovative multihop architecture in which usersā requests are sent through two separate internet relays operated by different entities. This way, no single party ā including Apple ā can view or collect the details of usersā browsing activity.6
All the rigorous privacy measures built into your iPhone and apps carry over to CarPlay. And iOS privacy updates apply to CarPlay, too.
Data minimization
When you use CarPlay, every app you see is powered from your iPhone rather than by the car. This means that Apple gives only limited metadata to the car to make the experience seamless, and only when that metadata is essential to delivering the service. For example, song information may be shared to display the current song youāre listening to, and the contact or call time for your current call may be displayed on an instrument cluster or head‑up display to help you see helpful information.
Third-party apps
Third-party audio, messaging, voice dialing, and navigation apps work in CarPlay, as well as apps that automakers create for their own cars. Because they run on your iPhone, all the protections that apply to third-party apps in iOS apply to CarPlay, too. And Apple always requires third-party apps to provide a privacy policy for you to review.
Home
The Home app uses encryption to protect the information you transmit to HomePod and all your HomeKit- or Matter-enabled smart home accessories. Apps that use HomeKit or Matter are subject to requirements as part of our developer agreement.
Encryption
Data related to your home is encrypted and stored in a way that Apple canāt read it. Itās also encrypted in transit between your Apple device and the devices youāre controlling in your home, even when you control your accessories from a remote location. Recordings from security cameras that use HomeKit Secure Video are analyzed privately on your Apple devices at home and then sent securely to iCloud through end-to-end encryption.
Location protections
When apps perform automatic actions based on your location, such as turning on house lights, these actions are initiated by the Apple Home ecosystem, which makes your location invisible to the app. You can also disable use of your location at any time.
App protections
Apps that use HomeKit or Matter are restricted by our developer guidelines to using data solely for home configuration or automationĀ services.
Random identifiers
Requests made using Siri, including those to control your smart home accessories, are associated with a random identifier ā not your AppleĀ Account. So your identity isĀ protected.
HomeKit Secure Video
In iOS 13 and iPadOS 13 or later, HomeKit Secure Video ensures that activity detected by your security cameras is analyzed and encrypted by your Apple devices at home before being securely stored in iCloud.
Matter
Appleās Matter implementation includes innovative privacy and security features designed to put you in control of your smart home experience and to enhance interoperability between apps andĀ ecosystems.
When pairing a new Matter accessory, iOS and iPadOS maintain the highest levels of privacy and security, ensuring that you are always aware of which accessories join your home and that you are in full control of your smart home network. Just as with your location information, contacts, calendar, and photos, apps must request access to add an accessory to yourĀ home.
HomeKit-enabled routers
HomeKit-enabled routers let you see and manage your other accessoriesā internet traffic, both within your home and through theĀ internet.
Children andĀ Families
Features like Communication Safety, Screen Time, Family Sharing, and Apple-designed education apps help keep kids safe and give parents and teachers control over what children can access and share.
Childrenās safety
Communication Safety adds protections for children who may receive or attempt to send photos or videos containing nudity. Parents can manage Communication Safety through their Family Sharing plan.
Content containing nudity will be blurred and the child will be warned, presented with helpful resources, and reassured that it is OK if they do not want to view the photo or video. Similar protections are available if a child attempts to send photos or videos that contain nudity. In both cases, children are given the option to message someone they trust for help. The warnings work across the Messages app, FaceTime video messages, and AirDrop, and when using the Phone app to receive a Contact Poster and the Photos picker to choose content to send.
All image and video processing for Communication Safety occurs on the device, meaning neither Apple nor any third party gets access to the content. Photos and videos are analyzed to determine if they contain nudity. End-to-end encryption is maintained, and no indication of the detection of nudity leaves the device. Apple does not get access to the messages, and no notifications are sent to the parent or anyoneĀ else.
FamilyĀ Sharing
With Family Sharing, parents have visibility into their childrenās activity and content on their Apple devices, and children can have their own AppleĀ Accounts with the consent of the family organizer. In addition to Communication Safety features that help parents protect children from accessing or sharing content containing nudity, Apple has developed tools such as Ask to Buy. This feature allows parents to approve app downloads or ināapp purchases to give them control over their childrenās purchases using their AppleĀ Account.
And now, parents will have the ability to share their childās age range with the apps they use while protecting their childās privacy. Through this new feature, parents can allow their kids to share the age range associated with the Child Account with app developers in a way that does not reveal the childās birth date and keeps them in control of their data.
You can use ScreenĀ Time to better understand and make choices about how much time your children spend using apps and websites. ActivityĀ Reports give you a detailed look at all their app usage, notifications, and device pickups ā and only you, your children, and those you choose to share it with can view this information. You can also set the amount of time your kids can spend each day on specific apps andĀ websites.
Apple doesnāt sell student information, and we donāt share it with third parties to use for marketing or advertising. Apple doesnāt collect, use, or disclose student information from Apple School Manager, the Schoolwork app, the Classroom app, iTunes U, or Managed AppleĀ Accounts other than to provide relevant educational services. And Apple does not track students or build profiles based on their email or web browsing. Parents can decide if they want their child to participate, and students have access to their own data on theirĀ devices.
To provide the best privacy protections for students and teachers, all relevant agreements and processes are aligned with the EU General Data Protection Regulation (GDPR). In addition, Apple has signed the Student Privacy Pledge, further underscoring our commitment to protecting the information students, parents, and teachers share inĀ schools.
Apple has guidelines that are designed to protect user privacy and security for all apps. For apps in the Kids category, we require additional safeguards to help protect childrenās data and prevent improper advertising. We believe that when parents download an app for their children from the Kids category, they should have visibility into how their childrenās device usage may be transmitted and confidence that their children wonāt be subjected to inappropriate advertisements.
Privacy protections are builtĀ in.
Privacy is a foundational part of the design process. We incorporate these protections throughout Apple products, apps, andĀ services.
Data minimization
At Apple, we believe in collecting only the personal data required to deliver what you need. Whenever possible, Apple processes and analyzes personal data on your device. In instances where specific personal information is necessary, we minimize the amount we use to provide the intended service ā like your location when searching in Maps. Apple does not maintain a comprehensive user data profile of your activity across all our products and services to serve you targeted advertising.
On-device intelligence
Apple uses machine learning to enhance your experience ā and your privacy ā by using on-device processing so other people donāt see your data. Weāve used it for on-device image and scene recognition in Photos, predictive text in keyboards, and more. For example, the A13Ā Bionic and later chips and the NeuralĀ Engine in iPhone can recognize patterns, make predictions, and learn from experience, similar to the way youĀ do. So your device can create personalized experiences without having to analyze personal information on Apple servers. Developers can use our frameworks, such as Create ML and Core ML, to create powerful new app experiences that donāt require your data to leave your device. That means apps can analyze user sentiment, classify scenes, translate text, recognize handwriting, predict text, tag music, and more without putting your privacy atĀ risk.
Transparency and control
When Apple does collect personal data, weāre clear and transparent about it. We make sure you know how your personal information is being used, and how to opt out anytime you like. Data and privacy information screens help you understand how Apple will use your personal information before you sign in or start using new features. We also provide a set of dedicated privacy management tools on our Data and Privacy page. For example, in iOS 14 or later you can choose to grant an app access to just the images you want. And youāll receive a notification when an app is using your location in the background, so you can decide whether to update yourĀ permission.
Apple has developed technologies to help obscure your identity when data must go to Apple servers. Sometimes we use random identifiers so your data is not associated with your AppleĀ Account. We have also pioneered using DifferentialĀ Privacy to understand patterns of behavior while protecting an individual userās privacy. If you choose to send Apple analytics about your device usage, the collected information does not identify you personally. When itās collected, personal data is either not logged at all, removed from reports before theyāre sent to Apple, or protected by techniques such as DifferentialĀ Privacy. Techniques like these help us deliver and improve services while protecting yourĀ privacy.
Without security protections, there is no privacy. Every Apple device combines hardware, software, and services designed to work together for maximum security and a transparent user experience. Custom hardware ā such as the Secure Enclave in iPhone, iPad, and Mac ā powers critical security features like data encryption. Software protections work to help keep the operating system and third-party apps safe. Services provide a mechanism for secure and timely software updates; power a safer app ecosystem, secure communications, and payments; and provide a safer experience on the web. Apple devices help protect not only the device and its data at rest, but the entire ecosystem, including what you do locally, on networks, and with key web services.