Apple has some double standards, too. When it's third-party iOS apps, it now requires user consent for tracking, which is a good thing. When it's its own operating systems, it sends too many questionable requests to various Apple servers with you having very little recourse — you basically have to reverse engineer the thing to some degree to prevent it from phoning home.

You don't need to trust Apple on this. That's why they'll add this feature:

- a new preference for users to opt out of these security protections

How can you check that this option is respected? Where is the source code?

There won't be 100% security or certainty, at some point you'll have to trust someone. Do you have the schematics or your network controller, your CPU? What about your ISP's router?

1. Your goal should be to have maximal verifiability. See Precursor: https://www.crowdsupply.com/sutajio-kosagi/precursor.

2. https://en.wikipedia.org/wiki/Defense_in_depth