Apple is saving iMessage conversation metadata, report claims

Tech giant accused of collecting data that it could share with law enforcement agencies

Apple is saving metadata from its iMessage app that it could share with law enforcement agencies, a new report has claimed.

Apple's servers allegedly log iMessage conversation metadata, according to documents obtained by The Intercept,  including the time and date on which messages are sent, frequency of contact and IP address, and could be used to establish limited location information.

The obtained documents originate from a state police agency that facilitates data collection using controversial tools, and also suggested that Apple maintains a log of phone numbers entered into Messages and potentially elsewhere on an Apple device, such as the Contacts app.

The collection of this metadata is down to the way Apple logs users and non-users of its Messages system, from contacts who chat via iMessage and those that do via SMS. To understand the difference between the two and route the message, Apple automatically checks numbers entered into an iOS device with its servers to see whether it has been associated with an iTunes account, hence the metadata.

Advertisement - Article continues below

Apple has responded to the report, stating that there are times when it can hand over server logs but that the content of conversations is inaccessible.

"When law enforcement presents us with a valid subpoena or court order, we provide the requested information if it is in our possession. Because iMessage is encrypted end-to-end, we do not have access to the contents of those communications," an Apple spokesperson said in a statement.

"In some cases, we are able to provide data from server logs that are generated from customers accessing certain apps on their devices.

"We work closely with law enforcement to help them understand what we can provide and make clear that these query logs don't contain the contents of conversations or prove that any communication actually took place."

The newly obtained documents contradict a statement released by Apple in 2013, which, commenting on the NSA's PRISM surveillance programme, said the company affirmed its commitment to "customer privacy" and insisted that it does not store information related to a user's location.

"Conversations which take place over iMessage and FaceTime are protected by end-to-end encryption, so no-one but the sender and receiver can see or read them. Apple cannot decrypt that data," Apple said at the time.

"Similarly, we do not store data related to customers' location, Map searches or Siri requests in any identifiable form."

Featured Resources

Application security fallacies and realities

Web application attacks are the most common vulnerability, so what is the truth about application security?

Download now

Your first step researching Managed File Transfer

Advice and expertise on researching the right MFT solution for your business

Download now

The KPIs you should be measuring

How MSPs can measure performance and evaluate their relationships with clients

Download now

Life in the digital workspace

A guide to technology and the changing concept of workspace

Download now



Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Apple iPad 10.2in (2019) review: The iPad grows up

10 Oct 2019

Apple iMac Pro review: The return of the king

2 Sep 2019

Apple iMac 21.5in review: Return of the (improved) Mac

28 Aug 2019

Most Popular

mergers and acquisitions

Xerox threatens hostile takeover after HP rebuffs $30bn takeover

22 Nov 2019
Google Android

Samsung Galaxy A90 5G review: Simply the best value 5G phone

22 Nov 2019
IT infrastructure

TSB payment delays suggest second IT meltdown

22 Nov 2019

Salesforce takes AWS relationship to the next level

19 Nov 2019