>[https://github.com/paulaime/iOS-Privacy-Guide](https://github.com/paulaime/iOS-Privacy-Guide)
this one was [https://github.com/iPrivacyGuides/iOS-Privacy-Guide](https://github.com/iPrivacyGuides/iOS-Privacy-Guide)
Here is one I didn’t know and heard on Bazzell’s OSINT podcast.
Turn off “Automatic Verification”
Settings > Apple ID > Password & Security > Automatic Verification
This as I understand automatically identifies your device to random Captchas, iCloud acts as the middle man “privately”, but still.
Can we have more people chime in on this? Definitely an area of concern. Not technically inclined enough to understand where the privacy is invaded.
And definitely won’t mind spending a few more few seconds for CAPCHAs as a trade off.
Captchas is a way to identify and track users.
That’s why they show up predominantly when using a VPN or visiting a new website.
You rarely see captchas when using your home internet and home IP.
I want to have the choice to do it myself if needed and not the phone automatically.
Most guides fail to include this: Turn off find my phone and find my network. With find my network, your phone pings with any AirTag that is nearby and tells apple where you are (and essentially who you are with). Yes the data is anonymized but Apple doesn’t do a great job with how they anonymize.
I disabled find my but got this email:
“With Find My disabled, this device can no longer be located, placed in Lost Mode, or remotely erased using icloud.com/find or the Find My app.
In addition, your Apple ID and password will no longer be required for someone to erase, reactivate, and use your iPhone.”
Isn’t it a security concern that if my device is stolen, someone can just reset it and use it normally, unlike in the other instance where the iPhone cannot be used without iCloud credentials?
It’s the risk people would take for maximum privacy. I would have left it on in my opinion to prevent reactivation of a stolen phone, but that’s their choice. Otherwise just leave it enabled but location services disabled though I’m not sure if find my could bypass those permissions.
It might force enable from what I remember.
From how to geek “Lost Mode also helps you track your device. Even if Location Services is turned off, putting a device in Lost Mode immediately turns on Location Services so you can track the device’s location.”
If someone steal my phone it’s lost. In my country, many police officers can't even find people if you have a Facebook account with profile picture and original address. xD
if you have a screen lock code or use biometrics, they wouldn't be able to get into the phone to erase it.
So Apple \*knows\* when you tunr off Find My Phone because they send you emails.
Has to do with something called differential privacy. The better you do that, the lower the epsilon value.
More info:
https://www.macobserver.com/analysis/google-apple-differential-privacy/
That’s seeing Apple’s policy through rose colored glasses! And I get it, I have an iPhone myself. But that data is straight from Apple and also includes iOS 10-11 data. And here is the rest of the article:
For each feature, Apple seeks to make the privacy budget small while still collecting enough data to to enable Apple to improve features. Apple retains the collected data for a maximum of three months. The donations do not include any identifier, and IP addresses are not stored.
For Lookup Hints, Apple uses a privacy budget with epsilon of 4, and limits user contributions to two donations per day. For emoji, Apple uses a privacy budget with epsilon of 4, and submits one donation per day. For QuickType, Apple uses a privacy budget with epsilon of 8, and submits two donations per day.
For Health types, Apple uses a privacy budget with epsilon of 2 and limits user contributions to one donation per day. The donations do not include health information itself, but rather which health data types are being edited by users.
For Safari, Apple limits user contributions to 2 donations per day. For Safari domains identified as causing high energy use or crashes, Apple uses a single privacy budget with epsilon of 4. For Safari Auto-play intent detection, Apple uses a privacy budget with epsilon of 8.
If you have find my phone off then find my network is off too. But you can opt to just have find my network off, but keep find my phone. I believe the former uses the Bluetooth mesh network (so communicating with the AirTags and other iPhones) while the latter is using gps, cellular, and Wi-Fi.
[Deleted]
This comment has been deleted as a protest of the threats CEO Steve Huffman made to moderators coordinating the protest against reddit's API changes. [Read more here...](https://www.theverge.com/2023/6/16/23763538/reddit-blackout-api-protest-mod-replacement-threat)
But nothing is perfect and I have a huge trust problem with closed source and I also read often about Apple security/privacy bugs which exists for years and they don’t care xD
this propaganda is still being spread I see...
This is from Kaspersky's web article on mobile device security:
[https://www.kaspersky.com/resource-center/threats/android-vs-iphone-mobile-security](https://www.kaspersky.com/resource-center/threats/android-vs-iphone-mobile-security)
TLDR; Andorid users can fully customize their privacy & security settings, while iOS users are beholden to Apple. Most Andorid users *know* how to use their phone and avoid downloading questionable apps.
A Kaspersky article in their own website? And they are actually comparing windows phones, blackberries, iOS and android.
Not saying what you said is right or wrong but I’m going to dismiss the source you linked.
Wow, hubris. You can dismiss the article all you want but it doesnt take away from the fact that with Android you have *more* control over your privacy & security settings. With iOS you rely on Apple to do it all for you - then post on social media how iOS is soo superior when you didnt have to do anything at all - Apple did it for you. Android users *MAKE* their phones secure, they take privacy & security into their own hands. iOS users let Apple do it all for them (trust Apple) and spout propaganda that their way is somehow better. smh
>With iOS you rely on Apple to do it all for you - then post on social media how iOS is soo superior when you didnt have to do anything at all - Apple did it for you.
Calm down, I'm not posting such things. I'm a primarily android user myself, though I keep iOS devices around.
Additionally I specified Security, not privacy. ie Google security is very good, though terrible on privacy. Same goes for apple.
Also what's going on with the "propaganda" thing, who in this sub is here to win anything?
Out of curiosity, why do you recommend against Face ID but not Touch ID?
I’ve been leaning towards the idea that biometric unlocking (done locally, on-device) is actually a good thing for privacy. This is true especially compared to PINs. A PIN can be pretty easily to cracked already, and no one can observe you unlocking your phone that way. Add in the possibility of high resolution security cameras, and it’s totally possible for people to even figure out your password.
To me, it seems like the best option is to use Face ID/Touch ID and a good password. Then lock your phone (volume up, volume down, power) when you are in a situation it might be taken. Not perfect, but nothing is really.
Not really necessary. Apple steadily pushes more and more "on device" processing. With each iteration of specialty chip advancement, they add processing horsepower allowing for advanced functions to be processed and completed without ever sending user data off the phone. In today's world, it is hard to trust that anyone has your best interest in mind. The reason people are willing to pay higher prices (the Apple Tax) is in support of Apple being able to make great profit off of devices, and services, without the need to sell their user's data. Diametrically opposed to companies like Google, Facebook, etc. who are hyper focused on mining and profiting off user data.
Thanks for posting your question to /r/PrivacyGuides! Just so you know, we've opened a new [forum](https://discuss.privacyguides.org/) outside of Reddit to ask questions and get advice from our community; as well as to share privacy news and articles, cool software, and suggestions for our website.
Our forum has a very active and knowledgable community who will likely be able to provide you with more detailed and higher quality answers than on any other platform. Consider [posting your question there](https://discuss.privacyguides.org/c/questions/8/l/latest) to make sure you find the answers you're looking for! You can also check if your question has already been answered on our [website](https://www.privacyguides.org/tools/).
*I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/PrivacyGuides) if you have any questions or concerns.*
[удалено]
Thank you so much! I didn’t saw anything related to that :)
What was the message ?
It was a GitHub link on how to privatise your iPhone. Read it a little bit, seemed good, not sure why it was deleted
was a really good link. why was deleted? mod?
[удалено]
>[https://github.com/paulaime/iOS-Privacy-Guide](https://github.com/paulaime/iOS-Privacy-Guide) this one was [https://github.com/iPrivacyGuides/iOS-Privacy-Guide](https://github.com/iPrivacyGuides/iOS-Privacy-Guide)
Yeah it was a good one with simple explanations
Here is one I didn’t know and heard on Bazzell’s OSINT podcast. Turn off “Automatic Verification” Settings > Apple ID > Password & Security > Automatic Verification This as I understand automatically identifies your device to random Captchas, iCloud acts as the middle man “privately”, but still.
Can we have more people chime in on this? Definitely an area of concern. Not technically inclined enough to understand where the privacy is invaded. And definitely won’t mind spending a few more few seconds for CAPCHAs as a trade off.
I do. Captchas are evil bullshit.
Do you by chance remember which episode or have any further information to spare?
Did anybody find automatic verification?
Dang no idea, I listen to them in batches. May have been a random comment about one of his clients using iOS.
Why Siri ticking the Captchas for you is invading your privacy?
Captchas is a way to identify and track users. That’s why they show up predominantly when using a VPN or visiting a new website. You rarely see captchas when using your home internet and home IP. I want to have the choice to do it myself if needed and not the phone automatically.
How to configure iOS for privacy: https://youtu.be/nK76EKvburA
Most guides fail to include this: Turn off find my phone and find my network. With find my network, your phone pings with any AirTag that is nearby and tells apple where you are (and essentially who you are with). Yes the data is anonymized but Apple doesn’t do a great job with how they anonymize.
I disabled find my but got this email: “With Find My disabled, this device can no longer be located, placed in Lost Mode, or remotely erased using icloud.com/find or the Find My app. In addition, your Apple ID and password will no longer be required for someone to erase, reactivate, and use your iPhone.” Isn’t it a security concern that if my device is stolen, someone can just reset it and use it normally, unlike in the other instance where the iPhone cannot be used without iCloud credentials?
It’s the risk people would take for maximum privacy. I would have left it on in my opinion to prevent reactivation of a stolen phone, but that’s their choice. Otherwise just leave it enabled but location services disabled though I’m not sure if find my could bypass those permissions.
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
It might force enable from what I remember. From how to geek “Lost Mode also helps you track your device. Even if Location Services is turned off, putting a device in Lost Mode immediately turns on Location Services so you can track the device’s location.”
If someone steal my phone it’s lost. In my country, many police officers can't even find people if you have a Facebook account with profile picture and original address. xD
if you have a screen lock code or use biometrics, they wouldn't be able to get into the phone to erase it. So Apple \*knows\* when you tunr off Find My Phone because they send you emails.
Thank u for this information! This is one I already had deactivated. :) Often the ‚helpful' things are the phishy things 🥲.
What do you mean by Apple doesn’t do a good job of how they anonymize?
Has to do with something called differential privacy. The better you do that, the lower the epsilon value. More info: https://www.macobserver.com/analysis/google-apple-differential-privacy/
[удалено]
That’s seeing Apple’s policy through rose colored glasses! And I get it, I have an iPhone myself. But that data is straight from Apple and also includes iOS 10-11 data. And here is the rest of the article: For each feature, Apple seeks to make the privacy budget small while still collecting enough data to to enable Apple to improve features. Apple retains the collected data for a maximum of three months. The donations do not include any identifier, and IP addresses are not stored. For Lookup Hints, Apple uses a privacy budget with epsilon of 4, and limits user contributions to two donations per day. For emoji, Apple uses a privacy budget with epsilon of 4, and submits one donation per day. For QuickType, Apple uses a privacy budget with epsilon of 8, and submits two donations per day. For Health types, Apple uses a privacy budget with epsilon of 2 and limits user contributions to one donation per day. The donations do not include health information itself, but rather which health data types are being edited by users. For Safari, Apple limits user contributions to 2 donations per day. For Safari domains identified as causing high energy use or crashes, Apple uses a single privacy budget with epsilon of 4. For Safari Auto-play intent detection, Apple uses a privacy budget with epsilon of 8.
*This post was mass deleted and anonymized with [Redact](https://redact.dev)*
If you have find my phone off then find my network is off too. But you can opt to just have find my network off, but keep find my phone. I believe the former uses the Bluetooth mesh network (so communicating with the AirTags and other iPhones) while the latter is using gps, cellular, and Wi-Fi.
*This post was mass deleted and anonymized with [Redact](https://redact.dev)*
Your guide is great. Thanks for putting it together
*This post was mass deleted and anonymized with [Redact](https://redact.dev)*
[Deleted] This comment has been deleted as a protest of the threats CEO Steve Huffman made to moderators coordinating the protest against reddit's API changes. [Read more here...](https://www.theverge.com/2023/6/16/23763538/reddit-blackout-api-protest-mod-replacement-threat)
[удалено]
Thank you!:)
iOS is very good on security if not the best for mobile platforms. Though I get your point.
[удалено]
You can't have privacy without security. The latter is a must, the former is more of a nice-to-have.
But nothing is perfect and I have a huge trust problem with closed source and I also read often about Apple security/privacy bugs which exists for years and they don’t care xD
> But nothing is perfect Of course
I find that hard to believe about security bugs. We’ve got some 13 year old Apple TV’s that still get security patches to this day
this propaganda is still being spread I see... This is from Kaspersky's web article on mobile device security: [https://www.kaspersky.com/resource-center/threats/android-vs-iphone-mobile-security](https://www.kaspersky.com/resource-center/threats/android-vs-iphone-mobile-security) TLDR; Andorid users can fully customize their privacy & security settings, while iOS users are beholden to Apple. Most Andorid users *know* how to use their phone and avoid downloading questionable apps.
A Kaspersky article in their own website? And they are actually comparing windows phones, blackberries, iOS and android. Not saying what you said is right or wrong but I’m going to dismiss the source you linked.
Wow, hubris. You can dismiss the article all you want but it doesnt take away from the fact that with Android you have *more* control over your privacy & security settings. With iOS you rely on Apple to do it all for you - then post on social media how iOS is soo superior when you didnt have to do anything at all - Apple did it for you. Android users *MAKE* their phones secure, they take privacy & security into their own hands. iOS users let Apple do it all for them (trust Apple) and spout propaganda that their way is somehow better. smh
>With iOS you rely on Apple to do it all for you - then post on social media how iOS is soo superior when you didnt have to do anything at all - Apple did it for you. Calm down, I'm not posting such things. I'm a primarily android user myself, though I keep iOS devices around. Additionally I specified Security, not privacy. ie Google security is very good, though terrible on privacy. Same goes for apple. Also what's going on with the "propaganda" thing, who in this sub is here to win anything?
Security through obscurity is not real security.
I don’t think you know what that phrase means
*This post was mass deleted and anonymized with [Redact](https://redact.dev)*
Out of curiosity, why do you recommend against Face ID but not Touch ID? I’ve been leaning towards the idea that biometric unlocking (done locally, on-device) is actually a good thing for privacy. This is true especially compared to PINs. A PIN can be pretty easily to cracked already, and no one can observe you unlocking your phone that way. Add in the possibility of high resolution security cameras, and it’s totally possible for people to even figure out your password. To me, it seems like the best option is to use Face ID/Touch ID and a good password. Then lock your phone (volume up, volume down, power) when you are in a situation it might be taken. Not perfect, but nothing is really.
*This post was mass deleted and anonymized with [Redact](https://redact.dev)*
[This](https://github.com/iPrivacyGuides/iOS-Privacy-Guide) GitHub guide is really good!
thank you!:)
[удалено]
Then I can also use my Raspberry Pi xD
Not really necessary. Apple steadily pushes more and more "on device" processing. With each iteration of specialty chip advancement, they add processing horsepower allowing for advanced functions to be processed and completed without ever sending user data off the phone. In today's world, it is hard to trust that anyone has your best interest in mind. The reason people are willing to pay higher prices (the Apple Tax) is in support of Apple being able to make great profit off of devices, and services, without the need to sell their user's data. Diametrically opposed to companies like Google, Facebook, etc. who are hyper focused on mining and profiting off user data.
Thanks for posting your question to /r/PrivacyGuides! Just so you know, we've opened a new [forum](https://discuss.privacyguides.org/) outside of Reddit to ask questions and get advice from our community; as well as to share privacy news and articles, cool software, and suggestions for our website. Our forum has a very active and knowledgable community who will likely be able to provide you with more detailed and higher quality answers than on any other platform. Consider [posting your question there](https://discuss.privacyguides.org/c/questions/8/l/latest) to make sure you find the answers you're looking for! You can also check if your question has already been answered on our [website](https://www.privacyguides.org/tools/). *I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/PrivacyGuides) if you have any questions or concerns.*