Apple has locked my Apple ID, and I have no recourse. A plea for help

The only “use cases” I’ve seen are discount or niche. For example, Target and Bass Pro Shops/Cabelas in the US both offered some kind of 5 or 10 percent back/discount around Black Friday on gift cards. Niche would fall into, generally, some small enough business that these messes aren’t likely to happen, where the point of the gift is specifically later-consumption, like a local coffee place that you know someone loves, or say a specialty herbs and spices place for a cook (where you wouldn’t know exactly what they want from there, but that they WOULD be delighted to get something from the place).

Otherwise? Yeah. Gift / prepaid credit cards are a horrible scam, because they tend to have a percentage or, worse, flat fee to activate. $4 extra on a $50 card as a gift means you just paid 8 percent just to GET the card.

You can give your postal carrier a gift card but they're not allowed to accept cash or a prepaid card. https://about.usps.com/postal-bulletin/2012/pb22349/html/cov...

> you should probably just give them cash

I really wish this was more acceptable. Even I have this block in giving just plain cash as a gift.

It's company scrip for Boomers.

>, how would they know what my Apple account is until they’re redeemed?

To add context, your reddit post also mentioned: >, I purchased eleven Apple Gift cards from [...], and apple.com, and added the amounts to my Apple account.

I'm not saying the following applies to you but one can buy Apple Gift Cards using their Apple ID. After adding gift cards to the ecommerce shopping bag on Apple.com, it offers the option : "Check out with your Apple Account"

So Apple would know the exact AppleID at the time-of-sale instead of waiting until redemption. If for some reason Apple's fraud detection system doesn't like the transaction (e.g. unusual ip address from Mexico instead of USA, or too many high-value cards in a certain time period, or other black-box opaque heuristic) ... then the buyer puts their Apple account at risk.

Fraud prevention heuristics are insanely aggresive these days...

Last week, I bought a Netflix subscription and 5 days later, Netflix cancelled the membership for no apparent reason. I got on a customer support chat with Netflix and the agent said it was cancelled because of the credit-card #. It didn't pass their fraud prevention system and to try using another card. At least Netflix automatically refunded the entire amount back to me -- whereas Apple keeps the gift card balance for itself after locking accounts.

In another incident, I used a Chase credit-card at a physical Apple store to buy 2 iPhones on 2 separate receipts. The first iPhone sale was a success. The 2nd iPhone transaction just 1 minute later was denied and Chase locked the entire account. I had to call Chase customer service and recite the make & model of a car I had 20 years ago to prove my identity for them to re-activate the credit card!

My recommendation is to completely drop the Apple ecosystem, however painful it is. I do use an iPhone but I treat it as just a phone. If Apple locks me out I dgaf.

I’m not trying to be rude, but what is the point of buying and then redeeming gift cards yourself?

I just pay Apple with my credit card when I want to buy something. Is this some kind of weird credit card rewards churning thing? Are you unbanked? I don’t understand why you’d voluntarily add unnecessary extra steps.

A credit card offers far more protections to consumers than a gift card.

Given the amount of false positives, Apple should have an appeal process for innocent users to regain access to their accounts. It would be nice if this applied to all big tech companies, losing an email address can make other accounts difficult or impossible to access.

This is a problem with modern life in general. Computing and the internet have exploded the complexity of society. Regular people have so much on their plate as it is (school, work, family, mortgage, etc) that they simply cannot keep up with all of the privacy and security risks of a digital life. They also can't keep up with the complexity of politics and civic life, but that's another discussion entirely!

> You'd think so. Yet, the stories of PayPal locking up payouts to surprised people keep coming every year - and people still use them.

At least in Europe, PayPal is a regulated bank which means you can hand the case over to the authorities and they can and will help you out.

I think tech people who read a lot of news headlines have a hard time grasping the scale of these services.

Commenters here talk about PayPal account closures as if everyone who uses the service will eventually lose their money. Now we're talking about gift cards as if everyone using gift cards will have their account locked.

These stories, while frustrating and sad, are rare occurrences. The majority of people who use these services will not have any experience like these stories you read.

To be honest, I think the average person is probably better at estimating their risk of using these services than a lot of these HN commenters.

I thought I'd buy Cory Doctrow's Enshittification ebook direct from his website. Surprised to be redirected to Paypal with no other option.

That's so much not a fitting comparison.

The most money I have ever had on my PayPal account was 100 bucks from a reversed transaction (like, double booking of a hotel room or wrong item sent), otherwise it's just a gateway. It would be annoying if my PayPal account was locked, because I use it a lot to order pizza online and a few small purchases. I could just use my credit card or something else but it's more clicks. And I know a lot of people who do it like this. The only thing lost is convenience. No past purchases, no digital identities.

Maybe you meant the merchants who really amass thousands but I suppose they are a small minority of active users.

I think it's a combination of money laundering and phone scams where people are told they owe money to the IRS or something and are tricked into buying a bunch of gift cards.

That said, if buying and redeeming gift cards are such an indicator of fraud that people are legitimately afraid of getting their accounts permanently locked, why doesn't Apple just stop selling them?

> You do not like person x, send them some Apple gift cards... :o

99.999% chance they happily redeem them and go about their lives.

These stories, while frustrating, are clearly edge cases. Yes I know you can find more if you search social media, but I don’t think a lot of these HN commenters realize the volume of gift cards Apple sells and redeems without problem every day.

In this case buy the gift card from some shady retailer with a one-time-use virtual card, and give this shady code to your friend. Or buy a physical card from aliexpress, the cheapest one with bad reviews.

[flagged]

The newer iPhones have such great cameras, I have have been considering an iPhone for my next phone. The only thing holding me back is the lack of built-in stylus.

Does the iPhone require an Apple ID? I don't even log into my Google account with my Android device. If the phone requires an Apple ID, then obviously I'm not buying one.

Well-spotted.

That includes the original poster! "could have been because I purchased gift cards from the US (online) and added them to my account while I was in Mexico, or I was using a VPN while adding gift cards"

One of the other people was someone who "purchased $2k in apple gift cards from target during Black Friday deals... There was a limit of 1 but if you went in store and were friendly to the cashier a lot of people (myself included) had luck getting them to ring them up as separate transactions".

Pretty sure if the latter person had given those out as separate cards to other people it would have been fine but going from "limit of 1" to "all redeemed by same account" is unsurprising when it triggers a fraud flag.

The big problem in this story as in the past one is the apparent lack of sensible escalation.

I've heard horror stories from Google devs that it's even worse - such a situation follows you for life even if you try to setup new accounts.

This isn’t a solution for many people.

And in fact, a prohibition is never a solution, it is a reduction in solution options

And this advice takes into account exactly zero aspects of the particular problems a given person may have to solve, besides “problems with Apple”, in a world where most people have “problems with X” for each of the few large ecosystems.

Freedom of choice would mean for N choices, being able to make, well, N indepointed choices. N may be a very large number given how many things people do.

For an ideal world of compatible modular technologies, N choices is easy.

But our technology world is highly non-modular, centralized at many levels, and full of incompatibilities and dependencies of various kinds and costs. Including important dependencies involving the choices of other people we interact with, or very specific tools or resources.

So no, “Don’t buy Apple” is not better advice, it is just bad random generic advice, without knowing a lot more about any particular situation.

Like what someone writes books about.

In phones you have a choice of iOS (Apple) or Android (Google). Sure, maybe some people can go back to flip phones, but I can’t without finding a new job.

This is the first I’ve heard of Apple locking someone out of their account for no reason. Google does it all the time. So, yeah, can’t leave Apple over this.

BSD, Linux or TempleOS would never lock you out.

Some cultures stigmatize gifting money, yet gifting corporate scrip is fine.

For the similar reasons Apple sells socks.. maybe?

People love to smugly suggest this useless advice like there aren’t literal public services from governments around the world that are being tied to these platforms, let alone the many private companies which gate access to their goods and services behind apps on proprietary devices.

To say nothing of the fact that well-adjusted humans need to communicate with friends and family, and many times that also practically requires being on these platforms as well.

If it was be that simple. In that case I would have to go to the bank for every transaction/payment I want to initiate online. Banking app doesn't work for jailbroken devices. Using PC to access banks website works, but transactions still require 2FA and they don't support any other 2FA flow except the one in the app.

Or Microsoft.

Stay as far away from BigIT as you can. Linux or BSD are there for many good reasons. This is another one.

I had the misfortune of visiting an Amazon Go store. They charged me for items that I never picked.

No option to contest the receipt....until the "would you recommend a friend visit amazon Go" survey popped up. I responded negatively, then the "why?" question had a "My receipt was incorrect" option.

Suddenly I was able to go through the "contest receipt" workflow.

100% completely automated.

Why did you tell your bank it was delivered, if it was never delivered. Some other item you didn't order was delivered.

The system works as long there is user trust in the system. It is sad and annoying when something like this happens, but occasionally the best thing you can do is tell your story and never use a service again. I find there are still reasonable alternatives to Amazon, maybe not at the same price, but at least they deliver less fakes.

Wow, i received a fake product from Amazon ten years ago, their support gave me a full refund no questions asked. Shame how far they've fallen.

(Fwiw, i never bought anything from Amazon again after receiving one fake item. If i want to gamble I'll pay Aliexpress prices)

Does your country not have a small claims court or equivalent? This is literally what they are for: resolving obvious payment disputes with uncooperative corporations.

When I get bogus products from online ordering I just assume I got ripped off and that's that. A majority of my orders come through though so its not all bad.

Unless you live in a jurisdiction that is known to have very generous court judgements that fully compensate all expenses occured… wouldn’t this be true for literally every dispute you have above a certain threshold?

That’s simply the actual cost of living in your jurisdiction.

I don’t think any large retailer or bank on Earth guarantees there will be a viable escalation pathway for all possible combination of scenarios either.

Maybe a very high end private bank but even that’s iffy.

For all the negative press he gets and the way he treats his workers I'm surprised he still has resources allocated to handle complaints sent to his inbox.

This also works for many other companies by the way - find or guess the email of someone high enough up the management chain and you have a much better chance of your issue ending up with someone who can actually do something about it than phone support following a fixed script. Bottom barrel support options are a choice the company is making and you do not have to play by their rules.

Are you in the US?

I'm just always a little surprised to read things like "i couldn't live without Amazon," and i wonder if there are no other alternatives for two day shipping on other countries or what it is that keeps people stuck on Amazon instead of using other next-day deliveries

If you can…

I think you’re taking the message the wrong way.

Those are the steps the commenter suggests you take to use these services safely.

It’s not that these steps are reasonable.

Yours is an absurd response. Rage-bait? Still, I will bite - kind of.

1. You don’t need too much time to set this up.

2. All this doesn’t have to be in one sitting - with meds and coffee that keeps you awake through the sleeping hours

3. In fact it’s better if you do this over the weeks, months, years. For me it took years and I am still kind of doing it. Once in a while, here and there.

4. I am not very smart. If I was I’d have just ignored your comment.

Nobody believes this is right.

The question is: will you roll over and die without a fight for your rights?

At least you have time you are spending on HN that could be devoted to learning to fight. The fewer people that fight, the faster your rights disappear.

I’ll extend this, seriously, to the 3-2-1 model. It’s all fun and games, rhetorically, until someplace burns down.

I had a family member who had sudden onset of massive seizures. He could not remember any of his passwords or hints at all. It was a real challenge getting into any of his accounts to figure out what needed doing.

See https://doctorow.medium.com/como-is-infosec-307f87004563

> This is the same failure mode of all security-through-obscurity. Secrecy means that bad guys are privy to defects in systems, while the people who those systems are supposed to defend are in the dark, and can have their defenses weaponized against them.

> I don't think the laws are dictating Apple to completely turn off the accounts, but instead dictate that Apple should take measures against it.

You misunderstand the nature of financial regulation. The laws on things like money laundering are intentionally vague, they say things like "Apple should take measures against it". And financial regulators will not come out and say (especially in writing) that you MUST do any particular thing (like ban customers entirely on suspicion).

What they WILL do is ask probing questions, frown a lot, and make suggestions. Which the company had better take seriously. Because the financial regulators have the ability to simply close down your business, and if you cross enough of the unclear lines they will do so.

All this costs money for little return of invest. As long as the collateral damage is below a threshold that causes reputational damage, there is no business incentive to solve this.

I agree. The way they make sending parcels internationally more difficult through custom declarations and taxes and fines for smaller occasions it’s more practical to send a gift card from the destination country.

An excellent blog. Their piece on credit card rewards programs is an excellent read as well.

Anti-money laundering.

People have been saying that for literal decades before Elon Musk said it.

Youtube is full of scam baiting videos – of people who waste scammer's time for entertainment.

A very usual scenario is that the scammer pretends to be a technician doing some remote support and for example pretends to provide some refund. Then they pretend that they've mistakenly sent out e.g. 10x the amount and they ask for the difference back, claiming that their job is on the line.

Crypto would work, but since they target old and tech-illiterate people, the easiest way is usually to ask the victim to go to a store, buy gift cards and read out the codes.

Google kitboga (a known scam baiter) for the videos.

Well on a similar topic, next step you could look at crypto’s and casinos. What are the biggest players doing there.

It is probably lazy in the sense that they would need more lawyers and more careful ToS. Defending their ability to shut anyone off completely is a lot easier than dealing with lawsuits from customers denied X, denied Y, denied Z in regions A,B,C..

Anti Money Laundering measures.

Gift cards are often used for money laundering or scams, because they allow to transfer monetary value in small increments and without tracking: there's no link between the person who bought a gift card (anonymously with cash) and a person who used its code to put money onto an account.

Money laundering, I think.

AML = Anti Money Laundering

What kinds of stacked cross-promotions like this exist, and even work out financially for everyone?

Which I find obnoxious - they're taxable benefits, so I'd really rather just have the cash.

Seems like restricting their purchase to companies would be an easy way to prevent fraud.

That's backwards. The company treats the GC as a liability. It cannot recognize the funds as revenue until they are spent. This is GAAP and law (but see exception below).

GCs are valuable to brands because they are marketing tools. Recipients are prompted to go to the merchant to spend money, and they usually spend about 40% more than the face value of the card.

Also, GCs are valuable to merchants for breakage. This is when a card (or partial balance) goes unused. Starbucks, as an imperfect example, recognizes about 10% of their total outstanding GC balance as revenue every year, due to breakage. This amounts to hundreds of millions of dollars.

Well yes, obviously, and the company doesn't have to pay anything for the cost of locking you out of all your work files forever and costing you however much, so it's all upside for them.

If they had to reimburse you for the cost of all your lost files, then we'd see the real impact on finances.

It was a couple of years ago, it was virtual cards (I think one was a card given as reward by one of those legit review sites - edit: Gartner or one like those - which will reward you for providing reviews, and the other was money I had elsewhere that I converted to an Amazon card).

I remember I went through some automated process which asked me for some account details, and after a few hours (fewer than one day, I remember as much) my account was unlocked. It was scary!

What I remember puzzled me is that it was only two low-value cards. I would have understood the system being triggered by a lot of low value transactions, or a few large ones... but these were few and low value! Go figure.

Sorry I don't remember more details. All I know is it made me scared of gift cards.

I think you’re operating with the right mindset.

Looking at the linked story, the trigger seems to have come from redeeming a gift card bought at a major retailer.

Even if the purchaser uses a legitimate store, the user can’t really know the full supply-chain history of a prepaid code, and that uncertainty alone creates room for unexpected flags.

For people who already have a credit card, gift cards are a fuzzy choice if the goal is simply to load balance onto an account.

Something somewhere in the chain probably tripped a rule — maybe fraud-related, maybe a processing anomaly — and from the outside it’s impossible for the user to see which.

>macOS doesn't require this

Technically true but I tried using a mac without creating an Apple ID and gave up. You can't access the store without it so you are locked out of Mac apps that aren't installed by default, and all apps that only distribute through the store now.

Does iOS?

I don't think the customer should be required to implement their own redundancy on top of the services they subscribe to.

It’s pretty silly to rely an OS that you don’t own. Though one can be forgiven if you have basically no other reasonable choice such as on mobile phones.

A similar thing happened to me - I lent a phone to my mother-in-law and created an account for her. She returned the phone once her own phone was fixed.

A few years passed, and a couple of weeks ago my phone broke, so I wanted to use that one until I bought a new one. It turned out that Apple had permanently deactivated the iCloud account on that phone. I could make calls, but I couldn’t install or update any apps, even though I still controlled the email address that was used to create the Apple account. Not that 5S is very useful these days but still.

Thanks, that gives me hope - my SO bricked their Thinkpad by forcibly powering it off in the midst of the firmware upgrade of all things. Don't ask.

I was looking for the flashing hardware around here, but i should probably peek on AliExpress :)

Linux and the other unices are great for their CLI, but GUIs seem more like an afterthought on that side.

You're lucky and this is not a representative of the politicians at all.

In my Parliament MPs seem to represent primarily the interests of their donors, not those of their country, not even constituents. It still better than it used to be, the corr...., er lobbying is not as blatant, but its still obvious.

Seeing the MP? Yeah. Maybe if someone lives in the "unsafe seat" area and the MP is trying to get reelected:)

Because you can’t get rid of your government, whilst you can easily stop buying apple crap.

they can always print the difference, lol.

I am guessing it's not that they wanted the money. They thought there was something illegal happening and seized the money. I.e. not for themselves but for whatever law enforcement agency they thought might come looking for it.

If they thought you were money laundering, maybe giving it back would be a liability.

Self custody of cryptocurrency, for the vast majority of people, is riskier than putting their money in the bank. Most people lack the technical competence to keep their crypto secure, and the downside of losing access is much more significant. Notice that the stories regarding banks go "I had to sue them to get it back". With cryptocurrency, in the vast majority of cases, it would instead be "the money was gone for good".

all banks. Any bank that can indefinitely freeze your money and get away with it will do it. And now that everyone is doing it, the reputation damage is minimized.

Nobody said iWord.

So taking a wrong turn should result in you being mugged, raped and subsequently killed because apparently there was some "safe", but less convenient, passage? You're not helping OSS by making claims like these.

Victim blaming is simply a way to feel comfortable that it won’t happen to you. The takeaway should be that it CAN happen to you.

Let’s be real, the number of people who read it approaches zero.

Not only does no one read it but it seems like they are intentionally designed to be difficult to read.

They are written by lawyers for lawyers, not for common people to read.

And then what? Go to Google, Samsung, any other Android vendor and read the same TOS?

There should be laws to protect people, instead of blaming victims.

Every single cloud storage provider has a generic cop-out clause in their TOS that allows them to lock you out of your account for no reason at all, with no legal obligation to provide any proper justification.

This leaves you with just about zero cloud storage solutions that you can use.

Yes, yes, you can rsync your files to your NAS. Now explain that to your non tech-savvy neighbors.

Monetary damages generally accumulate during the pendency of litigation. Also, it seems unlikely that this would take 5 years to resolve—Apple would presumably just reactivate the account and argue the case is moot now. I mean, maybe they want to establish precedent here to avoid opening the floodgates to this type of litigation, but more likely they’d just settle this one out quickly and quietly and fight the issue when they had better facts. OP’s story is pretty persuasive.

Well... who else is going to defend victims if they're not going to defend themselves? Particularly when the person is presumably rather well resourced.

Justice is dead when nearly everybody just makes backroom deals with no admissions of guilt and nondisclosure of terms if they even defend themselves at all.

A person who is capable of defending themselves owes it to those who aren't as able; if even the most resourced people won't defend themselves, what chance to the rest of us have?

Or, they hit the brick wall that is US anti-money laundering laws. It’s illegal to “tip off” (warn) the person if they’ve tripped the AML checks.

At that point, it doesn’t matter how many friends you have on the inside, unless you’ve got one that’s ignorant of the law or willing to risk the penalties.

If he succeeds, perhaps you shouldn't care. If he fails, you should care, because that means that the average person will certainly fail. They will lose the cancer test results on their iPhone, the job they use the iPhone for, possibly their home, the copies of their birth certificate on their iPhone, and the friends they could crash with but whose phone numbers they've forgotten because they only communicate with them through iMessage.

You don't care that massive unaccountable corporations control all our data, devices and connectivity, and can lock us out of all of that on a whim or accidentally, and refuse to fix the problem?

This could happen to anyone. It can happen to people trusting Apple with their data, to people using Google, Microsoft, Amazon, or any other big cloud platform.

This deserves everybody's attention, and also a massive lawsuit to force these corporations to treat our data more responsibly.

If you're a scientist at an institution, why would you need root on the cephs or whatever storage system?

Brillant, I'm stealing it.

And Linus himself mostly just stores data on the cloud. At the end of the day, practicality matters.

Then why did he mention it (their credentials)? It has literally zero relevance in this case. Maybe they were trying to show off?

“This isn’t just an email address; it is my core digital identity”

If he doesn’t think like that, then why does he act like it?

There is if you want to blame the victim and/or work for Apple.

Yeah that’s a great idea

That is in no way a reasonable suggestion. You’re suggesting a raspberry pi (first red flag) along with a command line program. This is not reasonable in any sense of the word. Imagine me suggesting that everyone should be set up their own unraid server to make sure they can still stream movies and videos if Netflix goes down. Imagine me telling you you should set up a foundry to build your own engines because you can’t trust big car manufacturers. This is the case with everything in your life

Regulations exist because it’s impossible for any one person to handle everything that needs to be handled.

Ordinary backups don't aim to replace the full service. When you have a stock of food, you don't have enough to last you a lifetime. You have enough to weather a storm. The equivalent for tech would probably be having an offline copy of your "essential" data, but not of every photo you ever took. It would protect you from temporary internet disruption, or if a provider suspended you for a few days, but not if they banned you completely with no recourse.

Surely the company could trivially detect that?

Corporations play the role of gods in our society.

edit: about the same role as Greek or Roman gods.

Because their TC is $400,000 and they need it to justify their Bay Area mortgage. Come on, folks, follow the money.

Crazy how the industry with the biggest margins has the worst contempt for their customers

The root issue/risk is from cascading service dependencies, and I'm 99% sure this is done unintentionally at Apple et al.

Team builds service. Service depends on first party identity/authentication because it's easier.

... Fast forward 20 years, and no one at platform company even understands the dependency graph from a customer perspective anymore. Especially in the case of rare events like account locks.

Consequently, those customers face a sudden Kafkaesque maze of edge cases that don't line up, as the customer service processes people are funneled through are literally incapable of solving the problem.

Which means the entire "normal" customer support apparatus is unavailable to them. (The same apparatus companies aggressive shove all support through)

This is why there should be regulatory requirements for identity platforms mandating the ability to speak to a human who's empowered to fix your issue + an option for customer-choice decision arbitration + continuous random sample audits with penalties for falling below KPIs (timeliness, correctness, etc).

It should literally be illegal for a company to have their banning system 'oops' and then pretend they don't know you.

Because it's only going to get worse as more AI / probably correct methods infuse account security functions.

[flagged]

You’re right that nearly all responses are emotional , to maintain internal consistency. Even purchasing large gift cards is a common discounting approach when paying for cloud .

The sad news is when important people get locked out they can call dedicated support . This case was of someone who wasn’t celebrity enough to have that access

Oh I doubt it was his fault. I had something similar happen setting up a phone for a neighbor. Apple decided it was fraudulent after I added her address to the account. It was now dead with no recourse. At least I didn’t spend much on a used phone. Picked up an android and said it’s time to adapt.

I love your comment and I could not just upvote it because it is true with so many things. The technocracy/corpocracy is trying to sell you things that mnake you believe you can have power over everything, even your life. Anyone who "fails" at anything, it is all your fault. I have literally been told my mental illness, and my current homelessness, is my fault because I did not do the right thing. The power and control people think they have over their lives is a paper thin delusion.

Our shared powerlessness should bring us in communion with others, but the technocracy/corpocracy wants to rip that apart and make us dependent on them for profit.

Surprised at the downvotes to your excellent comment.

Good insight - that people dunk on the author as a cope to help the dunker feel less powerless

you're right there's a fine line. I interpreted the tone of most as judgmental / critical.

saying "get a lawyer" or "file a complaint" is constructive. saying " it's your fault for not backing up" or "that's what you get by using cloud" is just judgmental. Neither are practical solutions, regardless. Even with perfect backups it would have happened. And for 99% of social people, it's impossible not to cloud.

Using a separate email address for each site is smart, but creating a separate email account for each site is going to be very tedious, and I imagine Google, Yahoo, etc are going to stop you very quickly after you've opened 20+ accounts with the same phone number.

(Use a catch-all to have different email addresses for different sites, because when one gets hacked, then the damage is limited.)

I don't have anything serious on Google drive, just some files I share with third parties that primarily exist on my network; and certainly no photos. Photos are on my NAS which is backed up on several disks; I publish them on a small app that I built, self-hosted (after years with Smugmug I left them two years ago).

Most accounts with third parties use domains I own that are not on Google in any way. Some still use a gmail address and I need to migrate those. But nothing essential.

It means people that don’t use cloud at all can’t possibly work with anyone else

It's a joke.

You can run rclone every couple minutes on your NAS, it checks mtimes like rsync so it is reasonably efficient for most cases, though you may run into ratelimits with bigger data.

Google Photos deliberately broke all backup tools in March, so there's that.

Yes you can still mostly do Takeout, but it's garbage. (not incremental. Requires me to remember. duplicates files for every album (total incompetence). downloads regularly fail. Requires more room than I have on my mac to decompress so I have to put it on an external drive.)

> How do you collaborate ?

I commit code. I pair program. I share screen. That sort of thing. Code is mostly set up to have reproducible results. If it is not working on the other machine, then that's a bug and we need to solve it. There is not much collaboration I need to be doing in my free time. What I did on the last job is not what I depend on, but what a business thought they depend on. That's their stuff. If it fails because of some cloud ban or outage, not my problem.

When I need to share files with friends, I send them the files. Or I use Copyparty. Or, if they are more technically minded, I use Syncthing. For not so technical friends, I don't have to share 10k photos at once. Maybe I will send them a few photos via a messenger. Or some files they need via a messenger or have them on Copyparty, if needed often or again in the future. There is no issue.

> Do you have friends ?

Yes.

> A job ?

Had, and probably soon will have again, but I don't know what that has to do with what I depend on. If my job prescribes some cloud usage that is unnecessary, I guess I can try and show an alternative and begrudgingly accept that I have to use shitty tooling. But if somehow it is made impossible for me to use that, then it is their job to find an alternative. I am never the one prescribing it, and I myself don't depend on cloud.

> I’m not being rhetorical —- it’s very rare to have friends or a job and not have some ties to the cloud. Even my tiny HOA manages its record in the cloud

I surely have friends, who probably use some MS or Google cloud stuff. But that's their problem, not mine. I don't depend on that. And they don't share that much stuff with me, that there is sufficient incentive to start depending on it. And if they did, I would tell them, that I don't want to make a shitty account on MS or Google cloud storage thingies.

The main side-effect is the lack of trust and integration. For example, if you self-host your email (or more realistically push it on a VPS), then the moment you want to send an e-mail you are going to be marked as spam.

To register on some websites you may sometimes receive: “please use real email from gmail/outlook/etc”.

When you have a business meeting with a customer: “oh just install Jitsi on your mobile phone” is the best way to lose a sale.

Or no way to pay train tickets because you cannot install the app because your Apple / Play Store account is locked.

> there's no market for selling a solution that gives individuals data sovereignty

Theres no turnkey solution (of course not, it is prohibitively complex to architect one), but the bits and pieces are there, built on tried and tested software. For example, SMB and rsync and their clients, are practically enough to do backups.

Sovereignty also means responsibility. Either you have to keep your network secure, or you pay someone else do it (not always very well), otherwise you get security problems. Same goes for redundants backups, hardware maintenance, etc.

First of all, you don't have to care about this, unless you are wanting something from others and you depend on others and their opinion about your writing significantly.

That said, it does make your writing seem very odd. A little bit like the people, who apparently don't know what the shift key does, or how to trigger capital letters on their phones or something, and write only in lowercase letters.

Just because your phone does something silly, and it is not you doing it intentionally, that doesn't mean, that other people will not get a weird impression from you writing like that. In a way, you are letting your phone change the impression others are getting from your writing. And that impression is for many people that they wonder, whether you know the conventions of writing.

Now, like I said, you don't have to care about this. But if you want your texts to not come across like teenager written texts or low effort texts, it would be a good idea to fix your phone's silly settings, so that it doesn't do that to your writing.

For what it’s worth, I remember having this issue with Samsung OneUI keyboard when it was in French. In French there is this rule there that you should put a space before “?” and “!”, so perhaps their developers understood “all punctuation” or something.

I wonder what is his case.

Didn't they boot him for a ToS violation?

> Any lawyer can file a complaint in small claims .

No, in many states _no_ lawyer can file a complaint (except his own) in small claims court.

And yet all it takes is buying a piece of hardware and installing an app, something that plenty of "normal" people do every day.

> If they were banned from Microsoft 365 they would instantly go out of business.

Seeing how Microsoft is doing, they’re going to learn this lesson sooner or later.

> I don't think the idea that they could lose access to their accounts occurs to most people

Most people do not store anything valuable in the cloud anyway. The only problem is that they won't be able to login into Windows if MS bans the account, and they won't be able to install apps if Google bans their account along with phone serial number.

> I don't think the idea that they could lose access to their accounts occurs to most people.

"It just works" was practically a mantra for Steve Jobs, now we turn around and blame users for thinking that it will work

Because it shows some thoughtfulness. 'I know you like x so here's money to spend on that'. Cash looks like you didn't bother.

Same reason they gift you a book instead of a can of petrol. By giving you a gift card, they're forcing you to buy something sold at a specific store chain, not to buy more petrol.

This story proves that none of it matters if your money along with your account vanish because the megacorp doesn't like your gift card for whatever reason.

In fact, it is far worse than paying with a credit card directly in terms of risk. At least, when something goes wrong (which rarely ever happens), the bank has your back. On the other hand, I have seen too many cases where people find their gift card codes invalid.

Sometimes you can buy gift cards with a small discount (cash back)

> do not involve lawyers in vast majority of cases and encourage self-representation instead.

Sure, but if it's a corporation, who is going to represent the corporation besides a lawyer? In the US, some states explicitly do not allow a lawyer and require a different officer of the company represent them, but plenty do allow lawyers.

If Paris is taking Apple to the tribunal, there's no single human equivalent to Paris on Apple's side. This seems like the exact sort of situation where a lawyer is approved to represent somebody else.

From the fire into the frying pan.

There's a difference between malicious compliance and noncompliance. The EU has generally ruled that the lack of specificity you allude to does not exist; Apple has misinterpreted things that provide specific requirements to mean something other than what they legally mean. Fines have been levied and it seems that the situation has not yet been resolved; the fines will likely grow if Apple doesn't comply.

https://ec.europa.eu/commission/presscorner/detail/en/ip_24_...

I use Nextcloud for files/contacts/calendar/etc. as well, but for photos I use PhotopPrism [1].

The reason is simple: photos require much more processing and focus on performance. In addition, photos take up much more space, so while my Nextcloud instance runs on an SSD, the photos reside on an HDD, mostly in sleep mode.

[1] https://www.photoprism.app

I’m suggesting you do both One Drive and Google!

Also, to be clear, I’m saying to install One Drive and Google Photos on your iPhone.

My approach to this is based around having the least amount of things to manage.

In my scenario, I’m looking for the most simple out of the box systems to backing up that don’t require any self hosted solutions or NAS management and so on.

Just throw money at it!

Hence my suggestion to get a Mac, say a Mac Mini, with a decent sized drive and just sync everything to it.

Fully sync so it downloads the lot and need off loads.

The backup the internal drive with Backblaze.

I appreciate this advice isn’t for everyone, and it may not be the best solution.

But it’s a way to a least have some ultimate disaster recovery in place!

It may not be the cheapest, and cheapest doesn’t mean best. It may not be the best by some other measure of features, but it works and requires zero knowledge and additional hardware.

At least with some kind of backup, everything is not lost!

You don’t have to manage it or think about it. The services will sync for years without intervention until you upgrade your devices. For most people, that’s the important factor in having multi backups of their photos and documents!

Backblaze doesn’t erase after 30 days… I’ve had a computer be offline from it for several months and it still retained all data. And you can use the backblaze docker container to run on a NAS, much much much cheaper than B2.

Wasabi is much cheaper than AWS as well.

Finally the best solution for backing up your iCloud Photos is definitely Immich. Set it up on your own NAS or a VPS, back up to that, and then back up that server to an S3 storage using rsync or restic. I’ll note that I still backup to Backblaze because its so dang cheap.

I spent months trying to find the best setup a few months ago and this is by far the cheapest.

But still, this shouldn’t be required for normal people. They should get what they pay for.

> It’s less than $2 a month for 2TB.

What would be the egress fee to get your data back in case of disaster?

The Photos library "file" is just a big folder, I just sync the whole thing.

#!/bin/sh rsync --iconv=utf-8-mac,utf-8 -avh --delete-after --partial --progress /Volumes/myExternalDrive/Photos\ Library.photoslibrary myuser@mylinuxmachine.local:"/srv/myExternalDriveBackup/"

(note: tested with brew rsync, IIRC the default rsync is outdated on macOS)

Somewhere in the directory structure is a folder /originals/ which has all the actual files.

Note that this is only a last resort backup. Restoring the library as a whole requires a Mac with a compatible OS version. Restoring without a Mac would only get you the originals, so only the out-of-camera files (jpg, heic, raw), with no edits or metadata changes from Apple Photos applied (Apple Photos doesn't touch the EXIF data). You'd probably also lose the video part of all live photos, as the live video files stored as separate files and not part of the .heic files. They're there, but not very usable.

An alternative to this workflow is to export all photos (with edits applied) from the Photos app, but honestly I'm not sure if that even works and how long it would take for multi-TB libraries.

You can request an archive of all your data (including photos and drive) in 25gb chunks.

https://support.apple.com/en-us/102208

I recently rebuilt my home server as an unraid machine. Currently it’s mainly torrents and a Minecraft server but it’s got 10tb of locally redundant storage with a sightline to scale that to around 24tb, so it would be a logical place to store a full gphotos copy.

Thanks, I have the same problem and need to do something about it.

I wonder if it can calculate (estimate) how big of an external disk I'll need. My wife and I each have 40-50k photos and a few thousand videos in iCloud Photos.

10TB external harddrives are relatively affordable.

Thanks. I had no idea something like that existed.

How do we know using such a tool won’t trigger an account lockout? How ironic would that be.

Yeah that’s the one.

I do have a Mac so it didn’t seem difficult to me, but I accept it will be for those that don’t.

It runs on your own hardware. There is nobody else who has access to unencrypted data.

Why would you need it to be end to end encrypted anyway? You’re running it. Set it to only upload photos when you’re on your home network and you’re fine. Or fork it and make a PR and make it e2e encrypted.