Apple Stores Customer Data In China

Apple has said that it has been storing Chinese customers' data inside data centres based in China in compliance with  the orders of Chinese authorities to keep the personal data of its Chinese customers within the country’s borders. 

The iPhone maker is building two new data centres in China to house the data, as the company seems to have reportedly ceded to the country’s law that requires all personal information and data collected in China, to not leave its borders.

Apple does claim that it has "never compromised the security" of either its customers or their data and is merely complying with Chinese law about the data storage of its nationals, as with the laws of all the countries in which it has a presence. However, China has long been accused of using technology to monitor its population and there are concerns that Apple user data may be easily accessible by the Chinese government.

"We retain control of the encryption keys for our users' data, and every new data centre we build affords us the opportunity to use Apple's most cutting-edge hardware and security technologies to protect those keys," Apple said in a statement. "In addition, we handle law enforcement requests in China through the appropriate legal process, just like we do everywhere else, and we regularly and transparently report the instances when we are compelled to provide user information."

In December 2020 Apple removed 46k apps from its China App Store, following a deadline set by the state.The majority were games, which require an official lisence to be available in the country and Apple employees were instructed to flag those apps that company management perceived would anger the Chinese government. 

 Topics on those apps that would get flagged under this policy would certainly include the exiled Tibetan Dalai Lama and exponents of  independence for Taiwan, which China argues is a province of the nation. Some of the apps removed from the Chinese store related to gay dating services and foreign news organisations.

Washington Post:      BBC:       Techradar:        Fortune:      New York Times:         Business Insider:     Image: Unsplash

You Might Also Read:

Russia To Block LinkedIn:

 

« Will Governments Ban Ransom Payments To Hackers?
The History Of The Internet And Its Future »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

SureCloud

SureCloud

SureCloud is a Governance, Risk and Compliance (GRC) and Cybersecurity Solutions provider.

OIC-CERT

OIC-CERT

OIC-CERT is the Computer Emergency Response Team for Organisation of Islamic Cooperation (OIC) member countries.

Nohau

Nohau

Nohau provide services for safe and secure embedded software development.

Clearswift

Clearswift

Clearswift is trusted by businesses, governments and defense organizations globally for its Adaptive Cyber Security and Data Loss Prevention solutions.

Mosaic 451

Mosaic 451

Mosaic451 is a bespoke IT managed services provider and consultancy specializing in information security, operations and design.

Tangible Security

Tangible Security

Tangible employs the most sophisticated cyber security tools and techniques available to protect our clients’ sensitive data, infrastructure and competitive advantage.

Tabidus Technology

Tabidus Technology

Tabidus Technology is a cybersecurity association that unites and provides the global protection options against cyber threats.

Nagios

Nagios

Nagios is a powerful tool that provides you with instant awareness of your organization’s mission-critical IT infrastructure.

Accedian

Accedian

Accedian is a leader in performance analytics and end user experience solutions, dedicated to providing our customers with the ability to assure their digital infrastructure.

Rimini Street

Rimini Street

Rimini Street is a global provider of enterprise software support products and services, and the leading third-party support provider for Oracle and SAP software products.

Millennium Corporation

Millennium Corporation

For nearly two decades, Millennium Corporation has been operating on the leading edge of cybersecurity.

DeXpose

DeXpose

DeXpose is a hybrid dark/deep web monitoring and attack surface mapping platform to help you find compromised data or exposed assets related to your organization way before threat actors.

Viatel Technology Group

Viatel Technology Group

Viatel Technology Group is a complete digital services provider. We have over 26 years’ experience delivering fully managed security, networking, cloud and communications services.

Black Duck Software

Black Duck Software

Black Duck (formerly the Synopsys Software Integrity Group) is the market leader in application security testing (AST).

Boo Consulting

Boo Consulting

Boo Consulting is a trusted privacy and risk consultancy firm. We are driven to help you find an appropriate solution that will suit your budget and requirements.

Auraya

Auraya

Auraya develops its next generation voice biometric AI to deliver easy-to-use and highly secure speaker recognition and fraud detection capabilities.