Apple Slams EU Digital Markets Act as Privacy Threat

Apple's top compliance executive has launched a blistering attack on the European Union's Digital Markets Act (DMA), arguing the landmark regulation threatens user privacy and actively stifles innovation. Kyle Andeer, Apple's Chief Compliance Officer and Vice President of Legal Affairs, called the EU Commission's recent review of the law a missed opportunity for 'calm reflection,' escalating the tech giant's long-running battle with European regulators.

The criticism comes just days after the European Commission completed its first formal review of the DMA in late April 2025 and concluded the legislation has produced 'broadly positive' results — a finding Apple vehemently disputes.

Key Takeaways

• Apple's Chief Compliance Officer Kyle Andeer calls the EU's DMA review a 'self-healing' exercise rather than genuine reflection
• Forced interoperability rules could let companies like Meta access iOS users' Wi-Fi login histories, Apple warns
• The EU Commission's first DMA review concluded the law is working well — Apple strongly disagrees
• Apple claims the DMA unfairly targets its ecosystem while putting global users at risk
• The company says sharing proprietary innovations with competitors undermines its R&D investment
• Apple provided privacy risk examples to the EU, but says regulators 'turned a blind eye'

Andeer Calls EU Review a 'Self-Healing' Exercise

In a pointed interview, Andeer made clear that Apple had hoped the Commission's first DMA review would prompt regulators to reconsider certain provisions. Instead, he characterized the outcome as deeply disappointing.

'We had hoped this review would give the EU a reason for calm reflection, but it turned into a kind of self-healing justification,' Andeer stated. His choice of words signals Apple's frustration with what it perceives as a predetermined conclusion.

The DMA, which took full effect in March 2024, designates Apple as a 'gatekeeper' alongside other major tech companies including Alphabet (Google), Meta, Amazon, Microsoft, and ByteDance. The law requires these companies to open their platforms to competitors, enable sideloading of apps, allow alternative payment systems, and ensure interoperability with third-party services.

Apple has consistently argued that these requirements fundamentally conflict with its privacy-first approach to product design. Unlike Google's Android ecosystem, which has historically been more open, Apple's iOS operates as a tightly controlled environment — a design philosophy the company says directly benefits user security.

Privacy Bombshell: Meta Could Access Your Wi-Fi History

Perhaps the most striking claim in Andeer's critique centers on forced interoperability requirements. He warned that under the DMA's current framework, companies like Meta could potentially gain access to iOS users' Wi-Fi login histories.

This data point may sound innocuous, but its implications are significant. Wi-Fi connection records reveal:

• Location patterns: Where users live, work, and spend their time
• Shopping habits: Which stores and malls users frequently visit
• Social behavior: Whose homes users visit and how often
• Travel patterns: Hotels, airports, and destinations frequented
• Daily routines: Precise timestamps of movements throughout the day

With this information, a company like Meta could construct detailed behavioral profiles without users ever explicitly granting permission. 'This is the kind of problem we worry about — a privacy loophole that threatens users,' Andeer said.

Apple claims it provided the European Commission with concrete examples of such privacy risks. According to Andeer, regulators 'seemed to turn a blind eye' to these concerns. The accusation is a serious one, suggesting the EU prioritized market competition objectives over data protection — an ironic charge given Europe's reputation as the global leader in privacy regulation through GDPR.

Innovation Under Fire: Apple Resists Sharing Proprietary Tech

Beyond privacy, Apple raised strong objections to what it sees as compelled sharing of its proprietary innovations. The company argues the DMA effectively forces it to hand over technologies it spent years and billions of dollars developing to direct competitors.

This argument touches a nerve in the broader tech industry. Apple invested approximately $29.9 billion in research and development in fiscal year 2024 alone. The company contends that mandatory technology sharing diminishes the incentive to innovate in the first place.

Compared to the U.S. regulatory approach, which has generally avoided mandating interoperability at the platform level, the EU's DMA represents a fundamentally different philosophy. American antitrust enforcement typically focuses on punishing anti-competitive behavior after the fact, while the DMA proactively imposes structural requirements on designated gatekeepers.

Apple's position finds some sympathy among industry analysts who worry about unintended consequences. If platform companies cannot maintain proprietary advantages, the argument goes, they may reduce investment in the very features and services that made their platforms attractive to users in the first place.

However, critics counter that Apple's 'innovation' argument is self-serving. The DMA was designed precisely because companies like Apple had used their platform control to disadvantage competitors, limit consumer choice, and extract excessive fees — most notably the 30% App Store commission that has drawn scrutiny worldwide.

The Broader Regulatory Landscape

Apple's clash with the EU does not exist in a vacuum. The company faces regulatory pressure on multiple fronts globally, and the DMA represents just one piece of a rapidly evolving regulatory puzzle.

Key regulatory developments affecting Apple include:

• EU DMA compliance: Ongoing obligations including sideloading, alternative app stores, and payment system openness
• EU antitrust fines: The Commission has already levied penalties related to music streaming and App Store practices
• U.S. DOJ lawsuit: The Department of Justice filed a major antitrust case against Apple in March 2024
• Japan's app store regulation: New legislation requiring alternative payment options
• UK Competition and Markets Authority (CMA): Active investigations into mobile ecosystem dominance
• South Korea's Telecommunications Business Act: Mandating third-party payment systems in app stores

The DMA has become a template for other jurisdictions considering similar legislation. If the EU's approach proves successful in fostering competition without significant privacy harm, other regulators may follow suit. Conversely, if Apple's warnings about privacy risks prove prescient, it could slow the global push toward mandatory interoperability.

What This Means for Users and Developers

For the estimated 450 million iOS users in Europe, the stakes are tangible. The DMA has already forced Apple to allow alternative app stores on iPhones, enable browser engine competition, and open up its NFC chip for contactless payments by competitors.

Developers face a mixed landscape. On one hand, the DMA creates new opportunities to reach iOS users outside Apple's traditional App Store gatekeeping. On the other hand, the fragmentation of the iOS ecosystem could increase development complexity and security testing burdens.

For businesses building on Apple's platform, the key questions are:

• Will forced interoperability create new data-sharing risks that require additional compliance measures?
• Could privacy incidents stemming from DMA-mandated openness erode user trust in the broader iOS ecosystem?
• Will Apple implement compliance measures in ways that technically satisfy the law while still disadvantaging competitors?
• How will Apple's response affect the cost structure for developers distributing through alternative channels?

Apple has a track record of implementing regulatory requirements in ways that critics describe as 'malicious compliance' — technically meeting the letter of the law while undermining its spirit. The company's alternative app store framework in the EU, for instance, introduced a controversial Core Technology Fee of €0.50 per app install that many developers found prohibitive.

Looking Ahead: An Escalating Standoff

The tension between Apple and the EU shows no signs of easing. The European Commission has already opened multiple non-compliance investigations against Apple under the DMA, and further enforcement actions appear likely.

Andeer's public comments suggest Apple is preparing for a prolonged legal and political battle. By framing the issue around privacy — a topic where Apple enjoys strong public trust and brand association — the company is playing to its strengths in the court of public opinion.

The next major milestone will be the Commission's ongoing non-compliance proceedings, which could result in fines of up to 10% of Apple's global annual turnover — potentially exceeding $39 billion based on the company's fiscal 2024 revenue of $391 billion. For repeat offenses, penalties could reach 20%.

Industry observers should watch for several developments in the coming months. Apple may escalate its legal challenges through the European Court of Justice. The Commission could issue additional compliance orders with specific technical requirements. And other gatekeeper companies may either align with Apple's position or distance themselves depending on their own strategic calculations.

What remains clear is that the DMA represents the most significant regulatory challenge to Apple's business model since the iPhone launched in 2007. Whether the law ultimately strengthens or weakens the digital ecosystem for European consumers will depend on how this high-stakes standoff between Cupertino and Brussels unfolds over the months and years ahead.