ESPOO, Finland — When you first unbox your shiny new iPhone or MacBook, you’re likely eager to dive in and start exploring all the exciting features. However, a startling new study by researchers Amel Bourdoucen and Janne Lindqvist from Aalto University in Finland uncovers some disturbing truths about the privacy implications of Apple’s pre-installed default apps. Their findings, based on a rigorous two-part study, shed light on the murky world of data collection and the challenges users face in protecting their personal information.
The researchers began their investigation with a comprehensive analysis of eight key default apps in Apple’s iOS and macOS operating systems: Safari, Siri, iMessage, FaceTime, Location Services, Find My, Touch ID, and Family Sharing. These apps were chosen because they are central to the Apple user experience and are interconnected, freely exchanging data across devices within the Apple ecosystem.
In the first part of the study, Bourdoucen and Lindqvist meticulously examined Apple’s public documentation, privacy policies, and user agreements related to these apps. They also conducted a thorough system evaluation, factory resetting devices and methodically testing various setup scenarios to map out the complex web of privacy configurations.
What they discovered was alarming. Many of the privacy settings for these default apps were either poorly documented or not mentioned at all in Apple’s official sources. For example, the study found that Siri continues to collect data from other apps, such as your contacts, your music preferences, and the names of your devices. Safari, Apple’s default web browser, can scoop up your IP address, browsing history, and even sensitive info like your payment methods. iMessage and FaceTime can access things like your call logs and the apps you use. This lack of transparency makes it incredibly difficult for users to understand and control what personal data is being collected and shared.