Apple's updated privacy website now allows US users to request stored personal data.

Apple on Wednesday launched an updated privacy website, updating the minisite to better inform customers about how the company protects the user's personal data on all of its products and services as well as a system allowing US users to ask all their data from Apple.

A regularly updated section of Apple's website, the Minisite of Privacy Protection covers a variety of areas and offers as much information to users about the iPhone producer's approach to treatment and securing user data. With the wealth of data stored on an iPhone, iPad or Mac, Apple is keen to provide explanations to its user base, so as to continue to create a climate of trust between the company and the buyers of his products.

As in previous releases, Apple divides the site into three main areas: privacy approach, user privacy management, transparency reporting, and link to the company's privacy policy.

Security and use of data

The "Our Privacy Approach" section gives users an overview of how Apple protects personal information. It explains how various techniques and tools are used in various applications and services, such as encryption and the use of device intelligence, while explaining to the user concepts such as: that differential privacy, which allows Apple to collect certain data. with additional random information added to prevent it from being tied to a specific device.

In cases like Apple Pay, Apple details the use of credit or debit card data to configure the service, namely that it is sent securely to the issuer of the card for confirmation and is not stored on servers, but that a unique device account number is created and stored only on the secure element of the device. Purchases are not tracked, although anonymized transaction information is collected for analysis and the device account number and a dynamic security code are used for the transaction rather than the details of the card.

For Safari, Apple adds a section highlighting the updated Intelligent Tracking Prevention system in iOS 12 and macOS Mojave, where third-party tracking sites can only create cookies or store data with the explicit consent of the user. # 39; user. For CarPlay, Apple adds a section in which third-party applications "must provide a privacy policy" for review purposes.

A later section covers services where there is a personalization element, a domain in which the data is more likely to be collected, although with all the protection that Apple can apply.

Apple Music has added a paragraph to its paragraph about the Apple Music Friends feature that allows users to share their favorite music with other people and decide who can see the tracks of their profile. Apple indicates that the service has access only to contacts that the user chooses to add to the feature, and not to the full contact list of the user.

The final section regarding tools provided to developers to protect user data also contains changes to the language used, including additional machine learning statements, such as the inclusion of Core MLs in the database. Touch ID sides, face ID, 256 bit encryption and application transport security. at the top. For the Machine Learning extract, Apple's name-checks the Create ML and Core ML structures available to developers for device processing.

HealthKit additions include a reference to Health Records data encrypted and protected with the iPhone's authentication code. If users share data with approved third-party applications, they go directly from HealthKit to the application without going through Apple servers.

Privacy Management and User Data Requests

The "Manage Your Privacy" section, which provides tips for users on how to secure their devices and accounts, contains new text under "Take charge of your data" and informs users of Apple's dedicated tools on the page. Data and confidentiality.

Previously available to customers from the European Union and several countries since May, due to the introduction of the General Data Protection Regulation (GDPR), the Data and Privacy portal offers users Americans a one-stop shop to: request a copy of their data, corrections, as well as disable or delete their account.

This process is an improvement over previous methods of requesting data held by Apple. Users could select what they wanted to see in a list, then receive what they had selected shortly after Apple had confirmed that the user was genuine and compiled the collection. . Although tools are already available to request, correct, and delete data, the new portal serves as a single point of access, rather than requiring users to request items separately through different processes.

In AppleInsider & # 39; s Testing the system when it was activated in Europe, users were able to acquire their business for App, iTunes, iBooks and Apple Music apps, as well as for Apple account and device information, contacts stored in iCloud , notes, calendars and reminders. , Bookmarks and Playlist, AppleCare Support History and other data.

Further down the page, Apple explains how users can manage the data that applications and services can share with each other.

The SOS Emergency feature of Apple Watch adds a language related to what the Apple Watch does in case of emergency. On the new site, Apple states that the user's location is sent to "all nearby emergency services that use the Rapid SOS service" when it is triggered, and that all shared data is deleted after 24 hours.

Along with parental controls and family sharing, Apple now informs parents of the existence of Screen Time, in order to monitor and control the time that kids spend on the use of apps and games. to browsing websites. The activity reports are highlighted to allow a "detailed analysis" of the use of applications, notifications and device collections, but they add that this type of data is only accessible through the parent and is not accessible by Apple or third parties.

The Transparency Report section remains the same as before, providing links to Apple's transparency reports and explaining company policies regarding government and private party requests, as well as Apple's guidelines regarding applications relating to the application of the law.

Confidentiality is essential

The privacy minisite update is part of Apple's efforts to ensure the transparency of its security, in order to demonstrate to consumers how important it is to protect the privacy and confidentiality of their privacy. to prevent anyone from accessing the data of a user without his permission. At a time when tech giants are accused of misusing user data for financial gain, as well as instances of poor security practices implemented, it has become even more important for Apple to retain the trust of its users.

Apple has been publicly and repeatedly beaten so that the data of the users remain in the shelter of prying eyes. Apple CEO Tim Cook has repeated many times that Apple believes that privacy protection is a "fundamental human right", a statement that is clearly one of the first things that users see when they access the minisite.

This philosophy has led Apple to defend the privacy of users against the weakening of public authorities and security agencies, demanding easier access to data to fight crime, usually by adding a back door. Apple and other companies believe that this is not the way to go, insisting that their creation represents a huge risk to digital security.

Apple recently submitted an official response to an Australian bill to update the country's telecommunications laws to compel private companies to provide assistance in accessing data. Apple's response has called the ambiguous language of being too broad in its coverage, while calling for "stronger and stronger encryption – not weaker" as a way to combat the growing number of online threats.

The iPhone maker testified at a hearing before a US Senate committee in September, in which he pleaded for support for federal privacy legislation. "Ultimately, privacy means living in a world where you can be confident that your decisions about sharing and using your personal information are respected," said Guy "Bud" Tribble, Vice President software technology at Apple. legislation should not impose an excessive burden on application developers.

Apple's position on privacy and user safety led Cook to ask Cook to address a speech to regulators and participants at the International Conference of Data Protection and Privacy Commissioners. October 24, as part of a session entitled "Discussing Ethics, Dignity and Respect Data Driven Life. "

"Tim played an important role in the privacy debate and as a leader of a company that has clearly defended his position on privacy, we look forward to his views." said Giovanni Buttareli, European Data Protection Supervisor. "He joins an already superb lineup of speakers and panelists who wish to take part in a discussion about technology serving humanity."