Tech Desk 
Feb 08, 2025
Apple’s Advanced Data Protection improves iCloud security with end-to-end encryption, ensuring only your trusted Apple devices can decrypt your data, even preventing Apple itself from accessing it.
By default, iCloud encrypts 14 data categories, including iCloud Keychain passwords and Health data. Enabling Advanced Data Protection expands encryption to 23 categories, such as iCloud Backup, Messages Backup, Photos, Notes, and iCloud Drive. However, Mail, Contacts, and Calendars remain unencrypted for compatibility with global email and calendar systems.
This opt-in feature requires manual activation and account recovery setup through a trusted contact or a 28-character recovery key. When enabled, iCloud.com access is disabled by default, though users can grant temporary access if needed.
Users must update their devices to iOS 16.3, iPadOS 16.3, or macOS 13.2 or later. Otherwise, unsupported devices must be removed from the Apple ID account to enable end-to-end encryption.
How to enable account recovery
- Open Settings on your iPhone or iPad (System Settings on Mac) and tap your Apple ID.
- Select iCloud > Advanced Data Protection > Account Recovery.
- Add a Recovery Contact and/or set a 28-character Recovery Key.
How to enable Advanced Data Protection
- Open Settings (System Settings on Mac) and tap your Apple ID.
- Select iCloud > Advanced Data Protection.
- Toggle on Advanced Data Protection.
Users can disable this feature at any time, reverting to standard iCloud protection. However, doing so will securely upload encryption keys back to Apple’s servers, allowing access to stored data.
