Apple is set to release its biggest-ever mid-cycle update for the iPhone, bringing major upgrades and security changes for users worldwide. However, the most significant changes will be implemented for iPhone users in the European Union (EU) as a response to the Digital Markets Act (DMA). In a white paper released by Apple, the company explained that it will have to open up its iOS system to allow sideloading of apps from alternative marketplaces, permit web browsers not based on WebKit, and enable other payment mechanisms beyond Apple Pay.
While Apple has taken precautions to protect user privacy and security, the company acknowledges that it cannot guarantee the same level of safety as before. The white paper states that complying with the DMA required Apple to make changes that may compromise user security. This has raised concerns among organizations like banks, which prefer to remain solely on the App Store and may consider not allowing their apps to be downloaded on devices with sideloaded apps.
Apple is also concerned about the potential vulnerabilities and security risks that could arise from sideloading apps, such as predatory payment techniques, mobile ransomware, and consumer spyware. The white paper highlights that EU users will lose the choice to exclusively remain on the App Store and benefit from Apple’s industry-leading protections.
However, users still have the option to stick exclusively to the App Store, Safari-based web browsers, and Apple Pay for payments. Apple acknowledges that it will have no control over external content if users choose to download apps from alternative app marketplaces. This means that apps with content prohibited on the App Store, such as pornography, tobacco or vape products, illegal drugs, excessive alcohol consumption, or pirated content, may become available on these alternative platforms.
Spotify has responded to Apple’s white paper, accusing the company of trying to create fear around privacy and security. Avery Gardiner, Spotify’s global director of competition policy, stated that Apple’s claims about needing to make the iPhone less secure to comply with the DMA were misleading. She argued that security and privacy can be achieved without relying solely on Apple’s App Store, as evidenced by the fact that Android users have not flocked to Apple over privacy and security concerns.
Gardiner criticized Apple’s proposed rules, stating that they do not comply with the DMA. She highlighted that app stores must allow developers to communicate offers free of charge, without imposing an onerous fee structure. Gardiner suggested that an investigation may be necessary if Apple does not change its approach.
The changes to the iPhone will be implemented soon, but it may take some time to fully understand their effects. Apple’s mid-cycle update represents a significant shift in its approach to app distribution and user security, particularly in the EU. As users weigh the benefits and risks of sideloading apps, the debate over privacy, security, and the role of app marketplaces is likely to continue.