thanks - I was about to reply to the same - is it technically possible? Yes - easy to do NO - if I am Apple- I wouldn't do anything if they are not sure it will be approved - in the meantime, EU users can download Grok, Gemini or whatever for their AI needsthat is not what is at stake. siri AI uses a phone-wide index of all user data that is 100% on-device. a third party agent having that access could upload an unprecedented amount of private data to their servers. you need an approval system where such agents can only access it if they have been first granted a specific entitlement and second the user must be given the opportunity to approve or deny access to some or all of that data.
apple will need to add the security layer to the indiex, design a clear and concise UI for the user to manage privacy of that data without accidentally leaking it while making that UI friendly enough to not seem like a barrier to using third party agents. an accidental clickthrough in this case can cause a permanent privacy breach of unprecedented proportions.