Apple Device Analytics Contain Identifying iCloud User Data, Claim Security Researchers - MacRumors
Skip to Content

Apple Device Analytics Contain Identifying iCloud User Data, Claim Security Researchers

by

A new analysis has claimed that Apple's device analytics contain information that can directly link information about how a device is used, its performance, features, and more, directly to a specific user, despite Apple's claims otherwise.

appleprivacyad cleaned
On Twitter, security researchers Tommy Mysk and Talal Haj Bakry have found that Apple's device analytics data includes an ID called "dsId," which stands for Directory Services Identifier. The analysis found that the dsId identifier is unique to every iCloud account and can be linked directly to a specific user, including their name, date of birth, email, and associated information stored on ‌iCloud‌.


On Apple's device analytics and privacy legal page, the company says no information collected from a device for analytics purposes is traceable back to a specific user. "iPhone Analytics may include details about hardware and operating system specifications, performance statistics, and data about how you use your devices and applications. None of the collected information identifies you personally," the company claims.

In one possible differentiator, Apple says that if a user agrees to send analytics information from multiple devices logged onto the same ‌iCloud‌ account, it may "correlate some usage data about Apple apps across those devices by syncing using end-to-end encryption." Even in doing so, however, Apple says the user remains unidentifiable to Apple. We've reached out to Apple for comment.

Apple has historically taken a hard stance on user privacy, repeatedly claiming it believes privacy is a "fundamental human right." Apple's privacy claims have been under increasing scrutiny in recent months, with the company now facing a class action lawsuit accusing it of tracking users without their consent.

Tag: Apple Privacy

Popular Stories

apple lock security bug vulnerability fix privacy

Apple Warns Canada's Bill C-22 Could Force Encryption Backdoors

Friday May 8, 2026 4:22 am PDT by
Apple and Meta have opposed a Canadian bill that the companies say could force them to create backdoor access to encrypted user data, should it pass through the country's parliament. Proposed by Canada's ruling Liberal Party, Bill C-22 contains provisions that could be similar ​to a UK data access provision order sent to Apple last year, depending on how they are implemented. Back in Feb...
Read Full Article80 comments
General Apps Reddit Feature

Reddit Starts Blocking Mobile Website, Pushing Users to App Instead

Monday May 11, 2026 6:10 am PDT by
Social network Reddit recently began blocking mobile visitors to its website while pushing them to download the official Reddit app, and it's fair to say that the move is not going down well with users. If you visit reddit.com on your iPhone today, you may see a new popup that can't be dismissed, asking you to "get the app to keep using Reddit." A Reddit spokesperson told Ars Technica...
Read Full Article119 comments
iOS 26

Apple Releases iOS 26.5 and iPadOS 26.5 With End-to-End Encrypted RCS, New Wallpaper, and Maps Updates

Monday May 11, 2026 10:06 am PDT by
Apple today released iOS 26.5 and iPadOS 26.5, the newest updates to the iOS 26 and iPadOS 26 operating systems. The software comes nearly two months after Apple released iOS 26.4 and iPadOS 26.4. The new software can be downloaded on eligible iPhones and iPads over-the-air by going to Settings > General > Software Update. Apple has also released iOS 15.8.8, iOS 16.7.16, iOS 18.7.9, and...
Read Full Article81 comments

Top Rated Comments

G
gpat
45 months ago

can be linked directly to a specific user, including their name, date of birth, email, and associated information stored on iCloud

Doesn't mean it IS linked. Context is everything and it’s only a guess at this stage. It’s a nothing story at this point.
You can't be serious.
Score: 53 Votes (Like | Disagree)
madmin Avatar
madmin
45 months ago
More reports like this are coming out lately, while Apple keeps quiet. They should probably do an announcement to clarify exactly what they do and don't do and what (if anything) has changed, for the sake of openness.
Score: 25 Votes (Like | Disagree)
solq Avatar
solq
45 months ago
I always turn off device analytics. There's no reason to upload personal usage data to Apple, especially as it can increase your exposure to security issues.
Score: 24 Votes (Like | Disagree)
3
3530025
45 months ago

can be linked directly to a specific user, including their name, date of birth, email, and associated information stored on iCloud

Doesn't mean it IS linked. Context is everything and it’s only a guess at this stage. It’s a nothing story at this point.

Where does it say that Apple are linking a persons id and details to the cloud?
You really can't be serious. The fact alone that IT IS identifiable is problem from the privacy perspective. If you don't understand that, you don't understand the privacy at all.

If I would record cars passing by some point while keeping information about
- registration plate
- rest of the car
- cell phone number of all phones passing by at the same time

while censoring the actual face in the photo. That's the similar thing like this case. Would you call it good privacy? With all these information gathered, you are able to link cars to people pretty reliably.
Score: 20 Votes (Like | Disagree)
vegetassj4 Avatar
vegetassj4
45 months ago
Et tu Tim Apple?



Attachment Image
Score: 15 Votes (Like | Disagree)
WiiDSmoker Avatar
WiiDSmoker
45 months ago

I always turn off device analytics. There's no reason to upload personal usage data to Apple, especially as it can increase your exposure to security issues.
Really should be off by default if Apple actually cares about privacy instead of saying they care about privacy.
Score: 14 Votes (Like | Disagree)
Read All Comments