A Tech Giant Reinforces User Privacy with New Rules
A leading tech company has made significant changes to its Developer Program License Agreement, introducing robust guidelines on how third-party gadgets should manage notifications and live activities. Here's the scoop.
A Peek into the Backstory
Exciting new code was unveiled recently in the iOS 26.5 beta 1 version, hinting at upcoming support for live activities for third-party accessories in Europe. This is connected to the feature that will enable these gadgets to showcase iPhone notifications, a privilege strictly for European users due to the interoperability stipulations of the Digital Markets Act.
In the previous year, the company expressed concerns over the DMA. They suggested that it would not only slow down the roll-out of new features in Europe, but also pose "new privacy and security threats."
They stated, "The DMA allows other firms to access user data and core technologies of our products. We are obliged to fulfill nearly all requests, even those that might expose our users to serious risks."
It's important to note that some of the requests received so far involve highly sensitive data on a user's iPhone. These include:
- The full content of a user's notifications. This data encompasses the content of a user's texts, emails, medical alerts, and all other notifications a user gets. This would disclose data to other firms that, even the company itself doesn’t have access to."
Interestingly, the company designed its operating system in such a way that it can't access the contents of notifications. However, the same can't be said for third-party devices, if they were mandated to share that data. Despite these concerns, the company’s arguments haven't been accepted, and they are now working to provide the access demanded by the DMA.
New Rules for Notification and Live Activities Forwarding
Recently, the company revised its Developer Program License Agreement. One of the key updates is a new section titled: 3.3.3 (J), Accessory Notifications Framework and Accessory Live Activities Framework.
According to the revised terms, third parties "may not use Forwarding Information for advertising, profiling, training models, or monitoring location," nor are they allowed to "distribute the Forwarding Information to any other Application, or any other device" except the third-party accessory configured by the user to receive such information.
Additional stipulations include:
- Accessories being prohibited from sharing this data or the encryption keys linked to it, with any other device, including the user’s own iPhone.
- They also can't modify the content in a way that changes its meaning, except what might be essential for proper display.
- Developers are forbidden from storing this data remotely, like on cloud servers, unless it's absolutely necessary for delivery to the accessory.
- The data can only be decrypted on the accessory itself, and nowhere else.
Finally, it's worth noting that apps don’t need to support the system for their data to be shared with third-party accessories, as this will be controlled by a user-level setting.
These updates underscore the tech company’s commitment to user privacy, even as it navigates the complex landscape of interoperability requirements in different regions.