Apple Shares Overview of Vision Pro's Privacy and Security Features

[MacRumors]

Following the launch of the Vision Pro, Apple has shared a new document outlining various privacy and security measures for the headset.

An overview of some of the Vision Pro's privacy policies, according to Apple:

• Where you look before you interact with content is not shared with Apple or the apps you are using, and does not leave the device.
• Apps you use cannot access information about your surroundings by default.
• visionOS does not share information about who may be physically nearby with the apps and websites that you use, or with Apple.
• Personas are generated entirely on-device, and associated data is encrypted.
• Optic ID data for iris authentication is encrypted and never leaves the device.
• You can limit the apps that someone else can interact with in Guest User mode to just those currently visible.

More details are available in Apple's document, shared earlier by 9to5Mac.

Apple privacy features available on visionOS include App Tracking Transparency, Advanced Data Protection, iCloud Private Relay, Hide My Email, and more. iMessage Contact Key Verification was added in the visionOS 1.1 beta.

Vision Pro launched in the U.S. earlier this month, and Apple said it plans to release the headset in additional countries later this year.

Article Link: Apple Shares Overview of Vision Pro's Privacy and Security Features

 

[mr_jomo]

That's pretty good.

 

[GermanSuplex]

Those are good protections, but there's something a bit spooky about this line:

"Where you look before your interact with content is not shared with Apple or the apps you are using, and does not leave the device."

I'm glad they're thinking ahead (and hopefully the implementations are effective), because its one of those things you don't think about until its too late.

 

[lazyrighteye]

Huh. In all the hubbub surrounding Vision Pro, I'm embarrassed to admit that I hadn't yet considered the potential - if stupidly not obvious - risks associated with having a dozen cameras pointed at your residence, family members, friends, and life. Honestly, I think that may speak more to the effects of having entrusted Apple with my data for so long that those risks didn't even cross my mind - which is an interesting phenomenon, in and of itself.

Anyway, these do sound like some well-considered and effective measures for the platform. Makes me curious how they compare/contrast with [say] Meta's privacy policies for Quest.

 

[mystery hill]

You can limit the apps that someone else can interact with in Guest User mode to just those currently visible.

I’d like a Guest User mode on iPhone and iPad.

 

[mukiex]

Whoever the artist at Macrumors is that's making these seamless Vision Pro overlay images is just straight-up KILLING it. 10/10, my guy and/or gal.

 

[Black Tiger]

12 cameras connected to the internet. If you use this gadget, assume that anyone anywhere can probably find a way to view your surroundings. An excellent opportunity for burglars to case your house before they rob it. But I’m sure that would never happen. Because if a tech company says you have privacy, it must be true right? With its high price tag, it helps criminals easily identify people with cash to burn.

 

[Surf Monkey]

Those are good protections, but there's something a bit spooky about this line:

"Where you look before your interact with content is not shared with Apple or the apps you are using, and does not leave the device."

I'm glad they're thinking ahead (and hopefully the implementations are effective), because its one of those things you don't think about until its too late.

“Before you interact with content.”

Interesting and critical qualification.

 

[mukiex]

12 cameras connected to the internet. If you use this gadget, assume that anyone anywhere can probably find a way to view your surroundings. An excellent opportunity for burglars to case your house before they rob it. But I’m sure that would never happen. Because if a tech company says you have privacy, it must be true right? With its high price tag, it helps criminals easily identify people with cash to burn.

It's slightly more likely than someone getting your fingerprint or face data from an iPhone. Slightly. If anyone hasn't seen the Black Hat USA 2016 presentation on the secure enclave, you kind of owe it to yourself to do so. It's kind of amazing how much R&D went into keeping that stuff secure.

For it to happen, they'd have to find one hell of an exploit that somehow doesn't get caught and result in their immediate blacklisting as a developer.

You don't get direct camera data or even where the user is looking via the dev kit. While that will likely result in some major annoyances (like Virtual Desktop or Steam Link VR not having any data to run foveated remote rendering with), it prevents exactly this kind of thing.

 

[loui100]

“Before you interact with content.”

Interesting and critical qualification.

Nothing ominous about it. Obviously interactions (clicking, touching buttons etc.) need to be shared with the app for it to function. It just doesn't share _how_ this interaction came to be triggered.

 

[OrenLindsey]

Compare this to android privacy policies. For all their faults, Apple actually cares about user privacy.

 

[decypher44]

So let’s say you’re getting adventurous with your partner “in the bedroom” by using some AR to accentuate what you’re looking at and touch. Does the “before you interact with content” cover this scenario?

 

[SexExpert]

“Before you interact with content.”

Interesting and critical qualification.

Apps still tend to need to know when you click on buttons and UI elements, sadly.

 

[3xBoom]

Interesting clarifications that highlight the unforeseen (perhaps?) complexity of sight-based interaction with a device. Opens a Pandora's box of uses, litigations and restrictions on apps and communications with our overlords in the cloud.

 

[vegetassj4]

Product specifications are subject to change without notice. This material is provided for information purposes only...
***I know, I know...they *have* to put this disclaimer in.

 

[goobot]

I’d like a Guest User mode on iPhone and iPad.

It only has a guest mode because they know it’s an uphill battle to make this thing popular and they want people to show it off to their friends

 

[Jim Lahey]

Speaking only for myself, nothing with a dozen cameras and six microphones will ever be considered private or secure, no matter what the manufacturer claims.

 

[lazyrighteye]

I’d like a Guest User mode on iPhone and iPad.

DEFINITELY on iPad.
I'd like fast user switching on all Apple devices - save, maybe, iPhone. That device seems more single-user than any.

 

[Jim Lahey]

DEFINITELY on iPad.
I'd like fast user switching on all Apple devices - save, maybe, iPhone. That device seems more single-user than any.

Many families I know have at least three iPads under one roof. If iPad OS had user accounts then that would be reduced to two, in some cases one. There's more chance of hell freezing over before Apple allows this to happen

 

[CarAnalogy]

I’d like a Guest User mode on iPhone and iPad.

The way it's currently implemented sounds more like demo mode. It's extremely basic, to the point that one person said the person trying it briefly lifted the visor to rub their fatigued eyes and it instantly locked.

We've had user accounts, including guest users, for fifty years. It's built in to the operating system that the operating system it's running was based on. It's even supported in managed devices. I just don't get it. I don't want to go straight to greed but is it really to force people to buy more iPads?

 

[Jim Lahey]

I don't want to go straight to greed but is it really to force people to buy more iPads?

Yes. Yes it is.

 

[PowerMacBook]

There's more chance of hell freezing over before Apple allows this to happen

didn't they use that idea when porting iTunes to Windows?...

 

[coffeemilktea]

It's awesome Apple is putting so many privacy features on it, but all I really care about is that no one else can see just how many windows I have open to look at memes. 🤫

 

[lazyrighteye]

Many families I know have at least three iPads under one roof. If iPad OS had user accounts then that would be reduced to two, in some cases one. There's more chance of hell freezing over before Apple allows this to happen

Oh I totally agree. If there were multiple user logins on iPad, we'd not be the 3-iPad family we are. I get it.
Still, as a consumer and father of two, my wallet would prefer a fast user switching on iPad option than not. 😜

 

[okieoutwest]

Eye tracking data is a potential gold mine. A massive one. Anyone who thinks Apple or any other company that can collect it won’t exploit it for advertising is delusional.

Technologists have been experimenting with pixels “flashing” at rates capable of being produced by high frequency screen refresh tech but invisible to the naked eye for probably over 10 years now.

Saying “probably” because that’s how long ago I randomly submitted to a prototype experiment being run in between my classes. The theory was obviously well underway to application.

The idea is that we can’t see it but our brain can detect the motion and subconsciously pull our eye to the location on screen, with significant implications for monetizing attention in new ways.

This was the very first thing I thought of when all the tech of the AVP was revealed.