Jonathan Zdziarski is a well respected security and privacy expert. Now he works for Apple. Jonathan’s explanation of why he took the gig pushes all my buttons.

I think Apple is serious when they talk about protecting user privacy and hiring people like Jonathan. I don’t know if this priority gives Apple much market advantage in the world today where most consumers are pretty cavalier about their privacy but it sure makes me happy to be using Apple products.

It is becoming increasingly clear that last year, the government ordered Yahoo to search its entire user email database and Yahoo’s response was, “no problem”. According to the New York Times, Yahoo was forbidden from disclosing the order and the collection is no longer taking place, but if they’re forbidden from disclosing, how would we really know that? Moreover, if that particular collection has stopped, who is to say that there aren’t other searches ongoing that still have not been disclosed. Is the government co-opting other technology companies to do their snooping for them? Yahoo has responded that Reuter’s original reporting of this was “misleading”, But again how would we really know? All of this is done under the veil of secrecy.

Every time the issue of privacy comes up, I feel like a bit of a dinosaur. I think privacy is a fundamental right and one upon which the United States was founded. It is baffling to me that these big companies, with presumably teams of lawyers, can just roll over so easily when the government asked them to search their entire email database.

If you could pretend for a moment that the Internet and email didn’t exist and discovered that the US Postal Service was opening and scanning every piece of mail that went through on the lookout for some particular piece of correspondence involving a terrorist or a foreign government, you would probably be outraged. I would be. The difference between that hypothetical world and the one we live in is that the Internet and email does exist and it is technically possible to pull something off like a search of all of Yahoo’s email for all of its users. Put simply, they are doing this because they can. Moreover, the government has shown very little restraint in asking for that type of information. This request may have been for an entirely legitimate reason. However, once you open up that door, it is going to be very difficult to close it.

At a minimum, I believe there should have been public disclosure and the courts should have had an opportunity to weigh in before the government was given such sweeping power. I can’t help but feel that Yahoo let the government off way too easy here and if I were a Yahoo email subscriber (I am not) I would be looking for new options … today.

The Electronic Frontier Foundation rates tech companies annually on how they handle their customer’s data. The 2015 report is out and, not surprisingly, Apple did well. The EFF explained:

This emerging theme from Apple about protecting user data is only going to get bigger. Apple doesn’t make its money serving ads and it has no economic interest in collecting user data. Moreover, I spoke with several Apple engineers last week at WWDC and, universally, they were all personally offended by the idea of government and other third parties getting access to user data. This is more than a marketing thing. Apple, as a whole, appears disgusted with the way our personal data privacy rights are getting trampled. I think we are going to see Apple turning up the dial on this issue in hopes of getting the word out to consumers. To me this is a big deal. The question in my mind, however, is whether I’m an oddball or this will resonate with the public at large.

So now we hear that they’ve also hacked the BlackBerry BES encryption. I’ve noticed, in myself at least, that the more of these revelations that become public, the less I am surprised each time. I can’t help but wonder that we have already lost the fight for any hope of actual online privacy.

∞