440

u/-genericuser- 7d ago

Problem is even if you do that, you need to check again every update. Not only that you might be opted into new features, I’ve also seen options checked after an update that weren’t checked before.

207

u/[deleted] 7d ago

[deleted]

122

u/PmMeUrTinyAsianTits 7d ago

A lesser version of this is why I stopped using Google photos. Literally every time I opened it it tried to get me to back up to their stuff. It doesn't matter how many times I say no. It's going to keep asking till I accidentally fat finger it or my daughter does.

It's also why I'm moving off of Gmail. Every time I log in it tries to get me to give it extra information. I don't need my fucking email to have my phone number, my real name, and every other piece of personal information. My email is for email. I dont want or need it to be my google approved social security number across the internet.

25

u/AntiAoA 6d ago

/r/Immich if you're down to self host your photos.

8

u/White_Pixels 6d ago

Photoprism is good too

→ More replies

→ More replies

7

u/Throwawaythispoopy 6d ago

I was actually looking this the other day since I have a pixel 7a. Someone said there is a setting in Google photos under the accounts icon for you to use Google photos without any accounts. Once I made that switch it never asked to backup my photo again

9

u/OrphanScript 7d ago

Where are you thinking of moving to?

60

u/EvanH123 7d ago

Proton is what I would suggest. It might sound odd to pay for email but for $8 a month I get 15 email aliases, VPN, 500GB of storage, and a password manager that I don't use.

I went from having like six gmail accounts to two. One for YouTube and one that I am keeping around solely for job-hunting purposes. Once I find a job that one is going too.

25

u/Publius82 6d ago

Worth mentioning that they also have a free acct with 2G storage

9

u/KarmaIsABitch1111 6d ago

Isn’t that owned by CERN in Switzerland?

12

u/EvanH123 6d ago

I think it started at CERN but became its own company.

21

u/maevewolfe 6d ago

as of this year moved to a non-profit model and has no shareholders

5

u/noceboy 6d ago

Sounds like Proton Unlimited. In that case you also have SimpleLogin Premium and thus an unlimited number of mail aliases (but, in my view, best with your own domain name). I have about 300 of those active. For every organisation I communicate with a separate one. If there is a data breach or if I notice they sold that address, I deactivate the alias and start a new one.

4

u/sum1__ 6d ago

I like it and use it plenty but I can’t yet 100% rely on it as some emails aren’t going delivered or being received

→ More replies

36

u/MonsterMufffin 6d ago

Shameless plug but I recently wrote a blog post about my de-googling, journey. Proton as others suggested has been my key for core services.

→ More replies

9

u/PmMeUrTinyAsianTits 7d ago

Proton for email. I do my backups basically manually to personally managed storage (i.e. i have cloud backup, but its just generic cloud storage i put my encrypted files on).

3

u/SilentDecode 6d ago

Immich (selfhosted) is a good solution. I've been running it for over a year now.

→ More replies

3

u/KarmaIsABitch1111 6d ago

Google notified me that the department of defense was interested in archiving my Gmail accounts. After I told Google, no, they did so anyway. Did Google give them to them? probably. It doesn’t matter, they have been with me ever since no matter what cell phone I use, what cell carrier I use, what computer or laptop I use…it does not matter. They are always there in real time 247.

21

u/IronicINFJustices 7d ago

If you are auto opted in, does it count as an opt in for the account, thereby giving permission to all data stored on the account? Meaning every update they get a full collection of data, even if you opt out 2 mins later?

Hopefully this isn't legal in the EU. Fucking brexit, it wouldn't even matter now, lol.

28

u/shadowsmith16 7d ago

It isn't legal in EU to have auto opt in on sharing your data.

2

u/Rough_Suspect_1094 5d ago

Im completely clueless on EU rules, so I’m making a total assumption here (that could be entirely wrong) - but I believe their “loophole” where for an auto opt-in is because the data is supposedly fully anonymous. They’re using on device processing to calculate “numbers” and submitting a “check” to see if the database has a match, and if so, your phone will get an answer back (I’m WAY over simplifying it, and only understand the gist of it).

I don’t trust it at all though, and immediately turned it off haha.

→ More replies

6

u/goddessofthewinds 6d ago

Yep. And they can even alter ToS against your will, sometimes not even telling you what changed. Like, you could sign up with a specific ToS, then have it completely the opposite way with no way to refuse... How can companies alter "contracts" (which are pretty much what ToS are) without issues? They shouldn't be allowed to alter contracts unilaterally, and with no way to refuse or keep the old contract.

The connected digital life has been completely plagued by the lack of regulations and I liked it a lot more before when I only had online anonymous forums as my only online presence on the web.

Now, you have cameras, phones, cars, fridge, washer, and a lot more ridiculous products connecting to the internet and saving private shit and stealing data to unsafe servers or are open to leaks from bad actors/infrastructure.

I keep my android phone disconnected from cloud services and I seriously hope they don't force that shit on me. 99% of the stuff I do on my phone is through an adblock-enabled Brave or Firefox. No way am I installing data-collecting pieces of trash full of ads when I can use an ad-free site.

→ More replies

3

u/WhoRoger 6d ago

Even if you make sure to uncheck everything, how can you know such setting is respected?

→ More replies

→ More replies

50

u/[deleted] 7d ago

[deleted]

43

u/MeinBougieKonto 7d ago

It takes me fucking forever to go through and uncheck them app by app… but I do

32

u/PrivacyIsDemocracy 6d ago

Yes, classic example of Dark Patterns.

Make it so burdensome to reset the abusive defaults to something privacy-respecting, that people get frustrated and stop bothering.

For the first time in years the Biden Administration had put regulators in place working to stop this kind of stuff, and that will all go down the toilet when the insurrectionist takes office again later this month.

https://en.wikipedia.org/wiki/Dark_patterns

2

u/FOADOligarch 2d ago

From having met some, I can confidently say that people who put dark patterns into things are among the worst most soulless husks of former humans. The kinds of people you wouldn't trust with keeping your drink safe.

→ More replies

→ More replies

6

u/chilloutpal 6d ago

such a pain. to add to this: even if you have lockdown mode enabled, downloading an app from the App store could re-enable Apple Games features. like "search for nearby players" or whatevertf. to re-disable, you have to turn off lockdown mode which restarts your device, then re-disable the features.

2

u/Agent_NaN 7d ago

where do you go to disable them?

16

u/[deleted] 7d ago

[deleted]

6

u/Agent_NaN 6d ago

thanks!

5

u/greyacademy 6d ago edited 6d ago

Well that's fucking annoying. No main switch eh? (Still, thank you!)

→ More replies

208

u/lo________________ol 7d ago

I remember when Apple threatened to implement CSAM scanning, and people complained. At the time, I figured it would come back.

It didn't just come back, this is worse:

Tsai argues Apple's approach is even less private than its abandoned CSAM scanning plan "because it applies to non-iCloud photos and uploads information about all photos, not just ones with suspicious neural hashes."

57

u/Appropriate_Ant_4629 7d ago

Are those the technologies that prevent parents from providing important medical information to their children's doctors?

Google and Apple should be sued for endangering children with those tools.

47

u/yellcat 7d ago

I thought the whole point was to do on device detection. This negates the purpose of having a ML chip on device

25

u/Legitimate_Square941 7d ago

Last time Apple tried to do on device scanning people lost it.

→ More replies

110

u/haakon 7d ago

Opt-in by default

This is typically called opt-out, as in the user has it and can opt out of it if they don't want it.

What a privacy-conscious user would actually want is for this feature to be opt-in, meaning it's not enabled by default but the user can opt into it.

13

u/ablonde_moment 7d ago

How do you opt out?

55

u/onan 7d ago

From the article, quoting apple's privacy document: "You can turn off Enhanced Visual Search at any time on your iOS or iPadOS device by going to Settings > Apps > Photos. On Mac, open Photos and go to Settings > General."

7

u/TheFortnutter 6d ago

Thank you!

→ More replies

32

u/Mccobsta 7d ago

And they always have the most irritating way to opt out

→ More replies

20

u/CookieCutterU 7d ago

You can turn off Enhanced Visual Search at any time on your iOS or iPadOS device by going to Settings > Apps > Photos. On Mac, open Photos and go to Settings > General.

From the article in case you don’t want to read it. 

3

u/Ok_Fee1043 6d ago

Is this only on ios 18 and up? I don’t seem to have that wording in mine, unless it’s just the “allow Siri to learn from this app” wording.

6

u/CookieCutterU 6d ago

From what I’ve read, yes. 18.1 and up. 

6

u/Princethor 6d ago

Thank you. I have no idea why you are getting downvoted

8

u/Stilgar314 7d ago

"Opt-in by default to make sure every clueless user will never take the steps to shut it down" From my comment, in case you can stop fanboying Apple for a minute and actually read something.

8

u/CookieCutterU 7d ago

How do you opt out 

2

u/LachoooDaOriginl 6d ago

how to opt out?

2

u/blondie1024 6d ago

Don't forget the deprecation.

New features will be installed, you uncheck sharing with AI and you'll get a polite warning, 'Then you won't be able to use our new features'. Then it's embedded into the OS and irrevokable.

They're just seeing that Google and Microshite money and going after it, and to be honest, people just seem to give it away freely anyway to anyone if they promote their product enough and give people FOMO (See Insta, Whatsapp, TikTok etc).

2

u/ThatrandomGuyxoxo 6d ago

Where can I find the setting to opt out?

2

u/slaughtamonsta 7d ago

Apple is on a tear lately. Go Apple!

2

u/_Lucille_ 7d ago

Apple tags work well because of this same reason, while a much more privacy conscious Google tag is inferior.

Companies get rewarded if they can get away with it.

→ More replies

89

u/superconcepts 6d ago

Opt in after an update when you previously opted out should be doubly illegal.

33

u/gromain 6d ago

Pretty sure this actually is illegal in Europe.

GDPR should protect against that shit since you already have withdrawn (or more accurately not given) your consent, so the Corp can't play the card "oh we didn't know".

6

u/Roo1996 6d ago edited 6d ago

Correct. There are several valid legal bases to process personal data under GDPR.

One of them is consent (I don't think any other ones would be relevant in this case).

Consent has to be explicit (i.e., cannot be bundled into terms and conditions) and freely given. Unless providing certain data is necessary for the provision of a service, the provision of the service cannot be conditional on the customer's consent (or else it would not be freely given).

That said, there are too many factors to make sweeping legal statements. In this case, I would imagine Apple is doing something to anonymise data to an extent.

2

u/Busy-Measurement8893 6d ago

Yeah, also known as opt-out.

2

u/csbphoto 6d ago

Yeah, even if I opt out, it’s been opted into for x amount of time. Total BS.

202

u/usmclvsop 7d ago

Worse is that even with icloud completely disabled it’s still sending you photo information to the cloud without even asking

111

u/One_Firefighter336 7d ago

I just had this happen to me.

iCloud full. Ok, let’s delete stuff. Freed up over 1.5G , logged out. Oops, forgot to check something log right back in. iCloud full. FROM WHERE WTF?!

(Yes all iCloud settings off on all devices, none logged in)

Some shady shit going on methinks…

47

u/notjordansime 7d ago

Did you also clear your recently deleted folder? If not, it’ll be there for 30 days, still taking up space. Had it happen to me before.

5

u/One_Firefighter336 5d ago

Thank you u/notjordansime for your advice, it worked.

Please take my humble upvote. ☝️

8

u/MsJenX 6d ago

What??! I didn’t agree to have my pics backed too the cloud

4

u/usmclvsop 6d ago

Neither did I but this feature was enabled when I looked

→ More replies

18

u/soogoush 7d ago

Seriously, I'm more and more going back in term of tech even though I love new technologies. Went back to iPod for music, home server for files and photos even though I still use iCloud.

Guess the next step is and "almost" dumb phone

51

u/Dontpayyourtaxes 7d ago edited 7d ago

Make change, take action, tell others and help them.

I used ADB and 100% degoogled my phone, I swapped out all the stock android apps for private opensource alts. I don't have any accounts on my phone. Never signed into email or anything. I also removed functionality for NFC, finger print scanning, and facial recognition. I have a toggle that disables all sensors.

I am walking around not sharing shit with the data brokers. I have a separate device for interacting with corporate world, it is walled off from everything else.

Also, syncthing can replace much of the functionality google offers with cloud/docs/pics. And KDEconnect is an air mouse/remote touchpad which is super awesome too. It will let you text from pc and can share all notifications and such.

We are opting in on data brokers and this invasion of privacy by accepting the terms of use. What I have expressed is a way to refuse those terms. I buy tech with a privacy requirement. Stock android or apple would be unacceptable as I believe proprietary accounts for the ability to use a device means that I do not have any control of it. I am not spending money on that.

9

u/samudrin 7d ago

Any good guides on doing this?

2

u/Dontpayyourtaxes 6d ago

first you need a device to tinker with. I have found some brands will not allow degoogle, I was given a samsung s8 and it wouldn't let me wash it completely. You can search for degoogle "phone model" and see what it takes for that model.

If you are going to need a new phone to do it, then you may also want to look into alt android forks that are already google free. changing OS is going to be a little easier then going through the list of installed packages in ADB, looking up what they are, and purging what you don't want.

That drawer of old phones is great for playing with ABD.

→ More replies

7

u/Controls_Man 7d ago

I guess... For all of this effort you are going through to sanitize a smart phone, including not even using applications, why not just buy a tracphone with a prepaid card?

→ More replies

7

u/csonka 6d ago

I’m guessing the trade off for privacy and control is a lot of your time and effort to manage this yourself and not being able to interact with genpop as easily (incidental friction).. is that right?

2

u/Dontpayyourtaxes 6d ago edited 6d ago

guess again, I spend time reading about privacy things, but I don't spend time managing anything. My phone has been the same set up for like 5 years. It works just as well now as it did 5 years ago. And, if I lost my phone no one is getting any info on my accounts.

"not being able to interact with genpop as easily" I don't even know what you are on about with this, do you think google is the key to your social life? I know of the people around me, my phone is the longest running set up. And, I pay a lot less than everyone I know. $130 on the phone 5-6 years ago and $200/yr for service.

Oh, did you know that when you remove all the carrier control of a device you can do things like use your hotspot without a separate data cap, or if you use youtube in a browser in desktop mode it has the same functionality as the $20/mo premium subscription?

→ More replies

3

u/TheAngryShitter 6d ago

What is ADB?

4

u/Rickie_Spanish 6d ago

Android debug bridge. It's a tool for app developers to debug their applications during development. Its also got a ton useful commands non developers can use as well.

3

u/tb0ne1284_ 6d ago

Android Debug Bridge. Basically allows you to modify Android system.

11

u/lo________________ol 7d ago

Can you enable these things before signing in? It's been a while since I've touched an iOS device

4

u/Dontpayyourtaxes 7d ago

I was thinking, with an android phone you could go in through terminal and ADB and clean up the trash before getting faced with the sign into google wall.

9

u/lo________________ol 7d ago

On Android, at least, you can skip signing in entirely. I haven't signed into an Android device for years now. I would be curious about what happens differently if you disable the Google app, though.

3

u/Dontpayyourtaxes 7d ago

I went through the list of packages on mine and got rid of all the google. My phone doesn't prompt for any kind of sign in at all. I have had this set up for like 5 years or more now. I am glad to hear there is an opt out for it for others that might not be so savvy to purge that shit.

10

u/xquarx 7d ago

Look at it this way, it's a slippery slope Apple is on, and we can see which direction they are sliding. Why give them more chances to screw us? It's like the manipulative ex, it doesn't get better from here onwards.

→ More replies

39

u/MasterRaceLordGaben 7d ago

https://gizmodo.com/apple-agrees-to-95-million-settlement-in-siri-eavesdropping-lawsuit-2000544806

It's OK, inevitably you will get 10 cents from this feature too. When eventually they make an "oops" and send the photos regardless of your settings.

14

u/TheAngryShitter 6d ago

Why did you spell greffeenOhEs like that?

40

u/PomegranateSignal882 6d ago

Because spelling it properly summons the creator, who's a highly confrontational autistic schizo with zero social awareness. Which is an excellent combination for creating a private operating system, but not so great for having a conversation with

5

u/TheAngryShitter 6d ago

Hahaha WHAT?? How does it summon him? Wouldn't you have to tag his reddit user name?

7

u/just_an_undergrad 6d ago

There are many ways to have the internet crawl for mentions of something that don’t involve Reddit’s baked-in methods.

→ More replies

2

u/TheAngryShitter 4d ago

Now that I understand what you're talking about. That makes this comment fucking amazing

53

u/Alternative-Walk9643 7d ago

So, basically, just about the same as its competitors.

22

u/Travel-Barry 7d ago

Well I don’t know if iOS tracks your taps and swipes to the same extent stock Android appears to. 

36

u/lo________________ol 7d ago

Most research I've read points to Apple being not as bad as, or occasionally on par with, Google. Still bad, obviously. But if you don't plan to install a new OS on top of your phone (or at least try fiddling around with app disablers) then Apple probably provides the better option, providing you do try mitigating their default settings.

"Android phones collect more data by volume, but iPhones collect more types of data, a study finds"

12

u/foobarhouse 7d ago

Would be good to see the study done again in 2025.

→ More replies

→ More replies

→ More replies

3

u/Dontpayyourtaxes 7d ago

synchthing does all this local, just a folder share/sync you have total control of. I have my degoogled phone set to sync the photos and docs folders with the same on my linux desktop. No account to make, works great. Same convenience as google docs and pictures but local and no big brother bs account.

5

u/SjayL 7d ago

Apple just flicks these on sporadically and hopes that I don’t check my iCloud settings every now and then.

I fucking hate this, but the reason that they do this is to save non technical idiots who fuck something up and can’t figure out how to fix it. Some people are so non technical that they don’t even know how to define what problem they are having. These people far far outnumber competent users, much less competent users who place a premium on privacy.

2

u/code_munkee 7d ago

I agree 100% on that.

What they are doing here seems pretty secure from violating privacy, but I definitely don't like that they did it without asking.

2

u/chrootxvx 6d ago

What is stopping you going GrafeenOhEs out of interest?

2

u/iwsw38xs 6d ago

Apple is not private; none of them are private.

→ More replies

→ More replies

4

u/jisuskraist 5d ago

funny thing, it doesn’t know is a dick pick. unless apple has a vector database of dick picks 🤔

→ More replies

162

u/lo________________ol 7d ago

FYI, you are quoting Apple and incorrectly attributing it to the article.

It's typical PR speak to universally enable an invasive feature, and then say "anybody can disable it" somewhere else in a much more obscure place.

10

u/Suck_My_Thick 7d ago

Not an apple fan, but where would you recommend putting it?

27

u/[deleted] 7d ago

[deleted]

→ More replies

18

u/lo________________ol 7d ago

Preferably, in a dialog box after the app updates. That's what Google did after they added a bunch of incredibly invasive advertisement stuff into Chrome recently. (And if you install Chrome fresh, it still pops up.)

19

u/vjeuss 7d ago

exactly

7

u/7heblackwolf 6d ago

Ok, at this point you just sound like a Karen...

Jobs introduced the three-clicks away long long time ago.

Literally this privacy "concerning" setting is 3 clicks away.

In windows for example you literally cannot disable Recall feature which is taking snapshots of whatever the f you're doing, or you cannot fully disable telemetry at all.

While I'm one of those that will likely disable it, for most common folks it's not a big deal and thel will probably enjoy the feature related, such as creating memories based on relevant contextual data or grouping photos (which WAS A THING EVEN BEFORE AI, this will just improve that locally).

So yeah, I think you're being a bit paranoid tbh. This is not one of the grounbreaking news in privacy, you're just trying to make it sound as it is.

14

u/Hooked__On__Chronics 7d ago

To be fair, Apple didn’t make it obscure if that’s where it is (settings > apps > photos)

22

u/therapist122 7d ago

It’s obscure as fuck. That setting is at the bottom and the words at a glance don’t indicate anything about the fact it’s sending your photo data to AI. It literally says “Enhanced Visual Search”. That is such a misleading term 

5

u/Hooked__On__Chronics 6d ago

Dude, it's not obscure. It's where you can reliably expect the setting to exist on an Apple device for any of their apps.

And I'm sort of with you on them not being explicit about it, but only a little. It says that the device "match[es] places in your photos with a global index maintained by Apple". It says it right fucking there.

And they put the "Photos & Privacy" button right underneath that for you if you want to see more. In there, it says "Your device privately matches places in your photos to a global index Apple maintains on our servers." Again, right fucking there, except you do have to click the feared blue text to get to it. Does the fact that it doesn't say "AI" change that much for you? I would want that shit turned off regardless.

I stated in another comment, I'm against the opt-out nature of this type of shit. But it's certainly not obscure. I think companies like Meta and Google have shown us what obscure really is. Does that mean I think it should be opt-out? Of course not.

→ More replies

→ More replies

24

u/Technoist 7d ago

Thanks! Turned it off. No idea why anyone would want/need to have this.

12

u/SenorSplashdamage 7d ago

My guess is that it might be tied to features for being able to search your own photos more semantically. I find it really irritating as I would like to be able to search “cats with gadgets” to find specific cat memes in my folders without having to share my private images for the company to train their algorithms.

7

u/lo________________ol 7d ago

Ente allows you to tag your photos using on-device machine learning, and doesn't need to send some subset of your photos to their servers to handle this, it just works. (When it's done, it can synchronize the tags it has identified with full E2EE. No homomorphic shenanigans.)

If it felt compelled, Apple could probably do this too.

5

u/Technoist 7d ago

I have not found anything about it having to do with identifying people or pets, etc. Do you have a source for that? From what I have found it seems to be only for identifying "places", i.e. landmarks such as buildings, towers etc. I already have locations metadata enabled so I already have the location of where the photo was taken, don't need to sync any data with a database of known buildings, encrypted or not.

→ More replies

9

u/I_Want_To_Grow_420 7d ago

To easily search photos. I understand the privacy risks but can see the positives as well. My grandmother is a wreath maker. She has thousand of photos of her wreaths and others for ideas. She can search "black orange wreath with spiders" and it will find all of the wreaths that are black and orange and feature spiders.

5

u/Technoist 7d ago

Hmm, I have been able to search for detailed objects by text in my photos for years. As I understand it, this thing is about recognizing places (buildings etc) and not persons, pets, objects.

2

u/I_Want_To_Grow_420 7d ago

Yeah, same thing, just updated. Now if it sees a mountain, it can guess if it's Mt. Kilimanjaro or a different mountain.

As you said, it's been around for years, so it's strange that people are just now getting upset about it. Any time is better than never though.

→ More replies

8

u/neon5k 7d ago

Is in on device ai? I have icloud photos backup off. Will ot still send my images to their cloud to do ai stuff?

16

u/Exact_Recording4039 7d ago

“Enhanced Visual Search in Photos allows you to search for photos using landmarks or points of interest. Your device privately matches places in your photos to a global index Apple maintains on our servers. We apply homomorphic encryption and differential privacy, and use an OHTTP relay that hides IP address. This prevents Apple from learning about the information in your photos.”

8

u/TimeGrownOld 7d ago

Interesting they use homomorphic encryption... if you wanted to make a feature like this while keeping privacy, that would be the way to do it.

Still, I thought homomorphic encryption was a long way away before hitting the prime time.

3

u/PrivacyIsDemocracy 6d ago

In the quick research I did on it today, it seems not without its flaws.

Apparently several aspects of it fail to meet traditional standards for secure encryption, for one thing.

Neither do I understand how being able to search an encrypted file for something without either decrypting it or even having the decryption key for that file improves the privacy of anyone.

If Apple or anyone else can look for evidence of [body part] in some "encrypted" blob and the search comes back "Body part found", how is that preserving anyone's privacy??

2

u/TimeGrownOld 6d ago

Good point on that last part!

→ More replies

23

u/lo________________ol 7d ago

It sends things to Apple regardless of whether you have iCloud backups turned off. That's what makes this particularly insidious: They added a new checkbox you need to find and disable.

→ More replies

6

u/[deleted] 7d ago

[deleted]

2

u/neon5k 7d ago

Then what?

10

u/[deleted] 7d ago

[deleted]

→ More replies

3

u/jumpyHR 7d ago

Does this apply to older iPhones still on iOS 17?

4

u/outofspc 7d ago

No only after you update to 18

2

u/PrivacyIsDemocracy 6d ago

Looks like it's an iOS 18 feature.

I recently migrated an iPhone running iOS 17 to a newer model running iOS 18 and it's in the new one, not the old one, and it's on by default.

Ugh.

13

u/ThisIsPaulDaily 7d ago

That said, I do think people should read it in full.  It outlines how the feature works to keep information encrypted the whole time.

28

u/vjeuss 7d ago

sorry but I don't think it's a matter of reading in full. Apple should, at best, show the option to opt in - not silently doing it, accidentally hearing about it, and then diving deep into settings to disable it.

38

u/FuriousRageSE 7d ago

Is it the same people that promissed that deleted images was deleted and unable to restore deleted images? :)

6

u/vtKSF 7d ago

That sentence doesn’t lend to a smiley face as much as you think it does.

3

u/xquarx 7d ago

Wonderful idea, but it's not open source so we can never really know how it actually works, just have take their word for it.

→ More replies

3

u/Lucky-Necessary-8382 7d ago

Thanks bro

→ More replies

6

u/CountGeoffrey 6d ago

agreed 100%. apple made a conscious decision to accept the short term backlash that they knew would come from this (they had to know they aren't dummies) with an understanding the fervor would die down within weeks if not days. and then the 95% normie population will just enjoy this new feature by default. i wonder what percent of apple users use icloud photo services today.

→ More replies

15

u/xquarx 7d ago

We are boling frogs, one small step at the time. For people reading this, here is your sign: JUMP. There are alternatives to everything inside your nice warm cozy pot.

→ More replies

5

u/chilloutpal 6d ago

where did you find one!? in the market for a nokia-never-dies myself lol

3

u/Danni_Les 6d ago

It's an old one I had to dig up - sony ericsson s700, a swivel phone, and have another backup, the w800 (or w810?) also from sony ericsson.

Found someone on reddit who has one of the w800

ebay seems to have a lot of them on sale with varying prices.

I might upgrade at some point and get a 3g version of one of the old phones, but for now, calls and texts work great, and the battery lasts 2-3 days on one charge.

3

u/ScoopDat 6d ago

That's great and all, but can you demonstrate that's what's actually happening?

We understand that's what ought to happen, but then we get nonsense like this. We can't eval what's going on serverside, and since none of their software is open source, we can't confirm any of that's properly happening on our end either. I can't understand how any of these claims are anything aside from 'trustmebro'.

→ More replies

8

u/lo________________ol 7d ago edited 7d ago

Apple made a huge blunder by failing to ask for consent before sending hashed image data to their corporate clouds. And I don't find these half measures to be much besides smoke and mirrors.

• Smoke: differential privacy is not battle-tested, let alone "impossible to reverse" as you say. [PDF]
• Mirrors: the OHTTP "third party" is Cloudflare, contracted by Apple. Cloudflare is a surveillance giant of its own.

→ More replies

7

u/planedrop 6d ago

Article isn't even that clickbaity to be honest, the headline of the post is though.

People don't read stuff anymore though, they just see a post and go UPVOTE and run with it.

24

u/igmyeongui 7d ago

Just read the whole TOS and this is the correct answer. This post, all the reactions and the clickbait title is the smoke and mirrors. Again Apple was able to provide a feature to enhance your experience and it’s not a the cost of your privacy. Still people here will never be happy no matter how encrypted your shit is.

27

u/bv915 7d ago

Oh no! How are you inject logic into this conversation!

→ More replies

24

u/CountGeoffrey 7d ago

there's an anti-Apple narrative that is very strong on /r/privacy

→ More replies

5

u/Trick-Variety2496 7d ago

Specifically, https://machinelearning.apple.com/research/homomorphic-encryption.

2

u/hyperion-0 6d ago

for the sake of argument, let's assume that apple can't see what happens server side due to the encryption outlined.

the process still results in all photos on your device being sent to a server which results in the photos on your device then being appended with a tag.

apple controls the hardware and the OS on the phone. they dont need to see what happens encrypted on the server since they can observe the result on the device.

theoretically, apple could create a server side database of anything to return additional tags (potentially hidden tags). what would then prevent the OS from phoning home if an image matched a database of tags stored on the device?

→ More replies

→ More replies

23

u/ChronoTrader 7d ago

IOS - Settings>apps>photos>turn off “enhanced visual search” located at the bottom of the page

→ More replies

3

u/prettybluefoxes 6d ago

Thank you my dude.

2

u/SquidFistHK 6d ago

Most welcome!

27

u/cookiesnooper 7d ago

"We don't share any of your data with 3rd parties.*" *but we do have access to literally everything you interacted with using our devices

17

u/lo________________ol 7d ago

Ironically, Apple is proud of using "OHTTP privacy" in this service - OHTTP is literally a Cloudflare proxy server contracted by Apple. That's one hell of a third party.

8

u/onan 7d ago

The way they use Cloudflare is to separate out knowledge of your IP address from knowledge of your request. "iCloud Private Relay is designed to protect your privacy by ensuring that when you browse the web in Safari, no single party — not even Apple — can see both who you are and what sites you're visiting."

Cloudflare sees your source address (for obvious reasons) but cannot see anything about the contents of your request. Apple sees (some) information about your request, but has no idea where it came from.

The goals here are that:

1) there is no way to get all the information about one request, and

2) there is no way to correlate any one request with any others.

This is obviously not a panacea for all privacy concerns, but it is a substantial additional layer of anonymization. It absolutely is not "we use Cloudflare, so now they see everything."

→ More replies

3

u/xquarx 7d ago

Our clients demanded we remove Cloudflare from our operations, they are a big privacy concern as often they sit with the encryption keys. 

→ More replies

→ More replies

4

u/looseleaffanatic 7d ago

This. Appleeaters try to flex on droids when the reality is they are both just invasive devices.

→ More replies

2

u/onan 6d ago

I will definitely never argue against self-hosting things, it's often a great tool. But the particular reasons you cite here don't seem to cohere into much:

Apple flagging photos

This is a thing that they never actually did. They published a whitepaper about how a CSAM-detection system could work in order to gather feedback, the feedback was negative, so they didn't do it.

iCloud hack

Some celebrities had their passwords guessed. That doesn't seem to have much to do with the hosting provider, and is even less significant these days given the increased commonness of 2FA.

FBI access.

Any company is going to comply with the law. (And that's very much better than the alternative; while some places will have some shitty laws, having corporations be above the law is definitely not an improvement.)

But apple is the only large company that has invested significant resources into making things E2EE, so that they usually won't have access to any of your data to turn over.

Given that your examples are 3-11 years old, and in one case so old that the link doesn't work anymore, this feels less like a relevant response to this story and more like a grudge list that you carry around and paste into a comment any time apple is mentioned.

→ More replies

5

u/CountGeoffrey 6d ago

they are not. google doesn't use FHE or differential privacy or OHTTP for image processing. Google deals with the actual photo and actually invades your privacy. While this feature by Apple is private to you.

→ More replies

→ More replies

3

u/Dontpayyourtaxes 7d ago

No, people should move away from using the internet on phones an general. Keep the phone clean and have a PC with VPN/adblock/private DNS,agent spoofing, containers, ublock, ..... Where you have control of your privacy easier.

3

u/empeirotexnhths 7d ago

Or an old school camera?

15

u/lo________________ol 7d ago

Considering how trashy modern cell phone cameras seem to be (Samsung got caught faking photos of the moon by applying a generative AI "Moon" filter to images it thinks are of the moon, and it applies similar enhancements to other photos), a DSLR might be a worthwhile investment.

→ More replies

→ More replies