Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

How to Request a Copy of Your Apple ID Account Data

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
67,160
37,119


apple-data-and-privacy.jpg
Apple now allows its customers to download a copy of their personally identifiable data from Apple apps and services. This can include purchase or app usage history, Apple Music and Game Center statistics, marketing history, AppleCare support history, and any data stored on Apple servers, including the likes of calendars, photos, and documents.

This article outlines the steps you need to take to request a copy of your data from Apple. As of writing, the service is available to customers in the United States, Canada, Australia, New Zealand, the European Union, Iceland, Liechtenstein, Norway, and Switzerland. If you live in a country or region that's not listed above, you can still contact Apple to request a copy of your data.

Apple promises to fulfill all data requests within seven days. Bear in mind that the size of the data download depends on the items that you choose to include (iCloud Photo Libraries can be several gigabytes, for example), but Apple will divide it into multiple files to make the download more manageable.


Click here to read more...

Article Link: How to Request a Copy of Your Apple ID Account Data
 
Article Link
https://www.macrumors.com/how-to/get-a-copy-of-your-apple-account-data/
Last edited:
So i just logged in on my iMac and straight away i get warning messages sent to my iPhone, iPad, and the same iMac i'm actually using, stating that a new device has signed into my account. It then gives me a two-factor authorisation code on the iMac that i'm currently using to input into the iMac i'm currently using.

I've had this iMac for 8 years....
 
  • Like
Reactions: Mr. Retrofire, B4U, SBlue1 and 2 others
Krayzkat said:
So i just logged in on my iMac and straight away i get warning messages sent to my iPhone, iPad, and the same iMac i'm actually using, stating that a new device has signed into my account. It then gives me a two-factor authorisation code on the iMac that i'm currently using to input into the iMac i'm currently using.

I've had this iMac for 8 years....
Click to expand...
Everyone gets it that enabled it. It’s two factor authentication get used to it unless you want someone hacking your account.
 
  • Like
Reactions: chabig and martyjmclean
Krayzkat said:
So i just logged in on my iMac and straight away i get warning messages sent to my iPhone, iPad, and the same iMac i'm actually using, stating that a new device has signed into my account. It then gives me a two-factor authorisation code on the iMac that i'm currently using to input into the iMac i'm currently using.

I've had this iMac for 8 years....
Click to expand...
So your complaining about security precautions in case someone was trying to download your whole history with Apple?
 
  • Like
Reactions: martyjmclean, wolfshades and chabig
Guys I’m not complaining i am merely highlighting what must surely be a bug.

Tell me what the point of sending a device authorisation code to the actual device that is in question?

Imagine visiting an ATM at a bank and when you put your card in it asks for the PIN number but at the same time shows on the screen what the PIN number is.....
 
  • Like
Reactions: AshleyHredone, miniyou64, Mr. Retrofire and 4 others
Krayzkat said:
Guys I’m not complaining i am merely highlighting what must surely be a bug.

Tell me what the point of sending a device authorisation code to the actual device that is in question?

Imagine visiting an ATM at a bank and when you put your card in it asks for the PIN number but at the same time shows on the screen what the PIN number is.....
Click to expand...
It’s not a bug. Your iMac is a known, trusted device, registered to your AppleID. An ATM on the street corner isn’t.
 
Krayzkat said:
Well if it was a known trusted device (which it should be after 8 years) why was it asking for an authorisation code?
Click to expand...
That’s how two factor authorization works. You attempt a log in and Apple sends an authorization code to your trusted devices to make sure the login attempt is from you. This method prevents a bad actor from getting into your account from an untrusted device even if they know your password.

You can read about it here: https://support.apple.com/en-us/HT204915

Of course, this assumes you take care to control access to your devices. If you freely let others use your machines then all security is lost.
 
chabig said:
That’s how two factor authorization works. You attempt a log in and Apple sends an authorization code to your trusted devices to make sure the login attempt is from you. This method prevents a bad actor from getting into your account from an untrusted device even if they know your password.

You can read about it here: https://support.apple.com/en-us/HT204915
Click to expand...
You're missing the point where the login was done on a trusted device. The entire point of two factor authentication is something you know and something you have. If Apple considers the iMac trusted, then why is it asking for a PIN?

Imagine if someone else gained access to the iMac via their creds. What good is two factor if the PIN is sent to the intruder so they can just enter it?
 
  • Like
Reactions: autrefois, miniyou64, Mr. Retrofire and 7 others
belvdr said:
You're missing the point where the login was done on a trusted device. The entire point of two factor authentication is something you know and something you have. If Apple considers the iMac trusted, then why is it asking for a PIN?

Imagine if someone else gained access to the iMac via their creds. What good is two factor if the PIN is sent to the intruder so they can just enter it?
Click to expand...
Read Apple’s web page again. Nobody else can use their credentials to use your stuff or login to your account. Other people with accounts on your machine can’t get into your account nor will they see the two factor authorization code. Sending an authorization code to your trusted devices is another level of security. You have to keep your personal login credentials to yourself or all bets are off. If you let other people use your trusted devices and share your password, then they can do anything they want with your stuff.
 
I agree that doesn’t make sense. The two factor should use another trusted device to show the pin, not the computer who is requesting the pin. I can’t say I’ve had that happen. My MacBook will send a pin to my phone or iPad but not to itself. Same with the iPhone and iPad. They won’t send it to themselves but to another trusted device. Very odd indeed
 
  • Like
Reactions: miniyou64, Stella and dazzlingirl
So you want your Mac to tell Safari to tell Apple who you are and what device you're using when browsing icloud.com or apple.com?
 
chabig said:
Read Apple’s web page again. Nobody else can use their credentials to use your stuff or login to your account. Other people with accounts on your machine can’t get into your account nor will they see the two factor authorization code. Sending an authorization code to your trusted devices is another level of security. You have to keep your personal login credentials to yourself or all bets are off. If you let other people use your trusted devices and share your password, then they can do anything they want with your stuff.
Click to expand...
You are missing the point. What is the advantage of sending a PIN to a trusted device to ensure its trusted?

A PIN should not be sent to a device that is requesting access. It's the same as trusting the password only.
 
  • Like
Reactions: miniyou64, Mr. Retrofire, Stella and 4 others
Krayzkat said:
So i just logged in on my iMac and straight away i get warning messages sent to my iPhone, iPad, and the same iMac i'm actually using, stating that a new device has signed into my account. It then gives me a two-factor authorisation code on the iMac that i'm currently using to input into the iMac i'm currently using.

I've had this iMac for 8 years....
Click to expand...

I had the same bug, its sending me the code on the same machine it is asking me for... Very unsafe.
[doublepost=1527083880][/doublepost]
chabig said:
Read Apple’s web page again. Nobody else can use their credentials to use your stuff or login to your account. Other people with accounts on your machine can’t get into your account nor will they see the two factor authorization code. Sending an authorization code to your trusted devices is another level of security. You have to keep your personal login credentials to yourself or all bets are off. If you let other people use your trusted devices and share your password, then they can do anything they want with your stuff.
Click to expand...

The code should not be sent to the same device! It should be sent to my iPhone or iPad, not the same machine I was using. Imagine someone else like a thief using my Mac and the code is sent straight to him!
 
  • Like
Reactions: MEJHarrison and dazzlingirl
belvdr said:
You're missing the point where the login was done on a trusted device. The entire point of two factor authentication is something you know and something you have. If Apple considers the iMac trusted, then why is it asking for a PIN?

Imagine if someone else gained access to the iMac via their creds. What good is two factor if the PIN is sent to the intruder so they can just enter it?
Click to expand...

slooksterPSV said:
I agree that doesn’t make sense. The two factor should use another trusted device to show the pin, not the computer who is requesting the pin. I can’t say I’ve had that happen. My MacBook will send a pin to my phone or iPad but not to itself. Same with the iPhone and iPad. They won’t send it to themselves but to another trusted device. Very odd indeed
Click to expand...

belvdr said:
You are missing the point. What is the advantage of sending a PIN to a trusted device to ensure its trusted?

A PIN should not be sent to a device that is requesting access. It's the same as trusting the password only.
Click to expand...

SBlue1 said:
I had the same bug, its sending me the code on the same machine it is asking me for... Very unsafe.
[doublepost=1527083880][/doublepost]

The code should not be sent to the same device! It should be sent to my iPhone or iPad, not the same machine I was using. Imagine someone else like a thief using my Mac and the code is sent straight to him!
Click to expand...
Exactly!

Why can’t the other people see what seems to be common sense?

Are the people who say it’s working as intended mis-reading everything in their hurry to defend Apple?
 
  • Like
Reactions: Mr. Retrofire, Stella, MEJHarrison and 3 others
Damn, it must be a bug.
Sending the key to the lock where the request to the key is originated.
[doublepost=1527085170][/doublepost]
Krayzkat said:
Exactly!

Why can’t the other people see what seems to be common sense?

Are the people who say it’s working as intended mis-reading everything in their hurry to defend Apple?
Click to expand...
I remember when I was in school, comprehension was a big part of learning the English language.
 
  • Like
Reactions: MEJHarrison, dazzlingirl, thebeans and 1 other person
Krayzkat said:
So i just logged in on my iMac and straight away i get warning messages sent to my iPhone, iPad, and the same iMac i'm actually using, stating that a new device has signed into my account. It then gives me a two-factor authorisation code on the iMac that i'm currently using to input into the iMac i'm currently using.

I've had this iMac for 8 years....
Click to expand...

belvdr said:
You're missing the point where the login was done on a trusted device. The entire point of two factor authentication is something you know and something you have. If Apple considers the iMac trusted, then why is it asking for a PIN?

Imagine if someone else gained access to the iMac via their creds. What good is two factor if the PIN is sent to the intruder so they can just enter it?
Click to expand...

SBlue1 said:
I had the same bug, its sending me the code on the same machine it is asking me for... Very unsafe.
[doublepost=1527083880][/doublepost]

The code should not be sent to the same device! It should be sent to my iPhone or iPad, not the same machine I was using. Imagine someone else like a thief using my Mac and the code is sent straight to him!
Click to expand...

The reason for this is that a browser does not have access to the "trusted device" data that is set up in your iCloud settings on your computer. It's, in effect, sandboxed away from all of that. This is why you get a pop up notification with the code when you're signing into an Apple webpage. Whether you're using Safari, Chrome, or Firefox, the only way a browser can send the "I'm a trusted device" flag is via a cookie, which it won't have the first time you log in.

You can test out the same behavior on iOS. Open up Safari on your iPhone or iPad, and go sign into http://appleid.apple.com. It will show a popup right there on the iOS device you're trying to sign into... for the same reason: the browser can't send the necessary "trusted device" settings the first time.
 
  • Like
Reactions: Recognition, newyorksole, miniyou64 and 7 others
MasterMac said:
The reason for this is that a browser does not have access to the "trusted device" data that is set up in your iCloud settings on your computer. It's, in effect, sandboxed away from all of that. This is why you get a pop up notification with the code when you're signing into an Apple webpage. Whether you're using Safari, Chrome, or Firefox, the only way a browser can send the "I'm a trusted device" flag is via a cookie, which it won't have the first time you log in.

You can test out the same behavior on iOS. Open up Safari on your iPhone or iPad, and go sign into http://appleid.apple.com. It will show a popup right there on the iOS device you're trying to sign into... for the same reason: the browser can't send the necessary "trusted device" settings the first time.
Click to expand...
Ah, good point. I was taking this as a request on an app that knew the device was trusted.

Still, it adds nothing to security by sending it to the device requesting the access. I'm not sure there's a way to fix that.
 
belvdr said:
Still, it adds nothing to security by sending it to the device requesting the access. I'm not sure there's a way to fix that.
Click to expand...

Yeah, I don't think it's possible. Apple could code something into Safari which would let it it access the data somehow, but then the question is do you let other browsers access that data? If you don't, then that creates more confusion to someone who doesn't use Safari. If you do, you open up the possibility that data can be accessed improperly which could theoretically let an attacker into your account.
 
MasterMac said:
The reason for this is that a browser does not have access to the "trusted device" data that is set up in your iCloud settings on your computer. It's, in effect, sandboxed away from all of that. This is why you get a pop up notification with the code when you're signing into an Apple webpage. Whether you're using Safari, Chrome, or Firefox, the only way a browser can send the "I'm a trusted device" flag is via a cookie, which it won't have the first time you log in.

You can test out the same behavior on iOS. Open up Safari on your iPhone or iPad, and go sign into http://appleid.apple.com. It will show a popup right there on the iOS device you're trying to sign into... for the same reason: the browser can't send the necessary "trusted device" settings the first time.
Click to expand...

Well it used to be different the previous times. I remember scrambling to find my iPad since Apple sent the code to it. This is a bug that makes the 2F authentification useless.
 
MasterMac said:
The reason for this is that a browser does not have access to the "trusted device" data that is set up in your iCloud settings on your computer. It's, in effect, sandboxed away from all of that. This is why you get a pop up notification with the code when you're signing into an Apple webpage. Whether you're using Safari, Chrome, or Firefox, the only way a browser can send the "I'm a trusted device" flag is via a cookie, which it won't have the first time you log in.

You can test out the same behavior on iOS. Open up Safari on your iPhone or iPad, and go sign into http://appleid.apple.com. It will show a popup right there on the iOS device you're trying to sign into... for the same reason: the browser can't send the necessary "trusted device" settings the first time.
Click to expand...
It wasn’t the first time I’ve logged in to Apple/iCloud on that iMac though, and I always use Safari too. Plus, why did it say device rather than browser, if that was the problem.

I’ve had the iMac for 8 years, longer than my current iPhone/iPad/AW, so its by far the ‘most’ trusted device I have...
 
  • Like
Reactions: B4U
I am logged in, but I don’t have an option to download my data. My only two choices are “Correct your data” and “Delete your account”.

Anyone else seeing this?
 
  • Like
Reactions: v3rlon and nsayer
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back