Google and Apple Play the Privacy Card: What the DMA Fight Means for You

Google and Apple Play the Privacy Card: What the DMA Fight Means for You

For the past few years, Google and Apple have been locked in a regulatory tug-of-war with the European Union over the Digital Markets Act (DMA). Their latest lobbying push leans heavily on a familiar argument: that complying with the DMA would weaken security and privacy for everyday users. This justification sounds reasonable on the surface, but it’s worth unpacking what the companies are actually saying—and what it means for your phone.

What happened

The DMA is designed to force “gatekeeper” platforms—companies like Google and Apple that control core digital services—to open up their ecosystems. Among other requirements, it mandates interoperability with third-party services and, critically, the ability for users to install apps from sources outside the official app store (sideloading).

Both companies have responded by warning that such changes would erode the built-in security and privacy protections that people rely on. Apple, for example, has long argued that sideloading would expose iPhone users to malware and fraudulent apps, because apps distributed outside the App Store would not be subject to the same review process. Google, whose Android platform already allows sideloading, frames its pushback differently: it contends that the DMA’s interoperability rules could force changes that reduce control over how apps access sensitive data, potentially undermining the “security by default” model that Android users currently enjoy.

The Tech Policy Press article covering this strategy notes that the companies are leaning heavily on the security-and-privacy narrative in their lobbying materials and public statements. They are framing the DMA not as a consumer-friendly reform, but as a regulatory mandate that would weaken protections most users take for granted.

Why it matters for you

Understanding the debate matters because it directly affects how apps are distributed, updated, and secured on your device. At the heart of the companies’ argument is a real tension: making an ecosystem more open often does introduce new risks. Sideloading can let in malicious software, and interoperability can create new ways for data to leak or be mishandled.

However, critics point out that “security and privacy” is also a convenient shield for preserving the companies’ control over app distribution and their associated revenue streams. Apple’s App Store fees and Google’s Play Store commissions are significant business lines. By equating openness with danger, the companies may be discouraging regulation that would give consumers more choice, while the actual security risks are often manageable with existing safeguards—Android already warns users before sideloading, for instance.

What this means in practice: if the DMA’s requirements are implemented, you could eventually see more app stores available on your phone, alternative payment options inside apps, and perhaps changes in how apps request permissions or update themselves. The degree of change will depend on how the EU finalizes its rules and how the companies comply—likely grudgingly.

What you can do

You don’t need to pick a side to be more informed. Here are a few practical steps:

• Stay updated on DMA implementation. Follow trusted tech policy outlets (like Tech Policy Press) or mainstream tech news that covers regulatory changes. Knowing what’s coming helps you anticipate changes to your app experience.

• Evaluate app sources carefully. If sideloading becomes more common on iOS, treat any app from outside the official App Store with the same caution you’d use on Android: check the developer’s reputation, read permissions, and avoid apps that ask for unnecessary access.

• Adjust your expectations for privacy. The current “walled garden” approach does provide a baseline of protection, but it also limits your ability to choose how your data is handled. Consider what trade-offs you’re comfortable with—more control over app sources versus a simpler, curated experience.

• Keep your device updated. Regardless of regulatory changes, installing OS updates promptly remains the single most effective step you can take to protect against vulnerabilities.

Sources

• “Google and Apple’s Anti-DMA Lobbying Strategy Goes All-in on Security and Privacy,” Tech Policy Press, June 25, 2026.