In early August 2020, Apple announced an important update as part of the release of iOS 14 and watchOS 7. At the time, Apple indicated that it will enable MAC randomization by default in devices using its new OS.

The update initially meant that devices with MAC randomization enabled will present a different MAC address to WiFi networks, thus curbing the ability of SSIDs to “remember” devices. This meant that networks would need to re-authenticate devices that try to connect every 24 hours, thus preventing SSIDs to track and profile users over time.

Unsurprisingly, this caused shockwaves across the WiFi community, and Apple likely received pressure from industry players to change its position. 

In mid-August, Apple seemed to backpedal on its original announcement. Rather than randomizing the MAC address every 24 hours, the latest update states that devices will use a different MAC address for each WiFi network. The MAC address will not change if the device is logging into a network to which it connected previously, so SSIDs will be able to “remember” a guest when they log back in. 

To make things even more interesting, in September, Apple announced that it would delay a new privacy rule affecting developers that are using a device’s unique identifier. Apple’s rule requires developers to ask guests permission to gather data and track them on across mobile apps and websites. The feature was originally slated to be released in the fall, but Apple pushed the update to early next year. 

There’s clearly a lot happening in the realm of WiFi and privacy. That’s why this post will explore Apple’s privacy updates and what companies can do to ensure that they’re able to continue offering frictionless WiFi services to their guests. 

Understanding Apple’s MAC randomization updates

To understand MAC randomization, let’s back up a bit and quickly talk about what a MAC address is. Short for media access control, the MAC address is a unique identifier that’s assigned to every device that connects to a WiFi network. 

Having a static MAC address resulted in many networks leveraging it for a variety of purposes.

Some companies have used the static MAC address to make the WiFi experience more convenient for guests. Guests who have previously connected to a location’s network won’t have to re-enter their login credentials the next time they sign in, as they are automatically authenticated based on their device’s static MAC address.

Other companies have used the static MAC address to gain real-time behavioral insights and deliver perfectly-tailored communications at the right moment. For example, loyal shoppers could receive a welcome back text message including a tailored special offer at their arrival at the store. 

All in all, a static MAC address made it easy for companies with physical locations to market and get to know their guests, which is why WiFi has grown to be a critical part of modern marketing. 

But as convenient as it is to have a static MAC address, there is a growing concern among guests who value their privacy. 

Research from Salesforce found that 46% of customers feel that they don’t have control over their own data, and Pew Research found that 72% of shoppers feel that “almost all or most of what they do online or while using their cellphone is being tracked by advertisers, technology firms or other companies.”

Privacy is clearly a concern for guests, and Apple is doing something about it. As the company notes on its website:

To communicate with a Wi-Fi network, a device must identify itself to the network using a unique network address called a media access control (MAC) address. If the device always uses the same Wi-Fi MAC address across all networks, network operators and other network observers can more easily relate that address to the device’s network activity and location over time. This allows a kind of user tracking or profiling, and it applies to all devices on all Wi-Fi networks. 

To reduce this privacy risk, iOS 14, iPadOS 14, and watchOS 7 use a different MAC address for each Wi-Fi network. This unique, static MAC address is your device’s private Wi-Fi address for that network only.

What does it mean for companies that rely on MAC address to collect information

Here’s the good news: Apple’s updates won’t affect the ability of individual WiFi networks to authenticate and recognize devices. 

The bad news? Companies that have multiple locations or multiple brands, and use a specific SSID per location or per brand may run into several issues because a guest’s device will generate a new MAC address for every SSID. For instance, if a company runs several stores that operate under different names, not having a static MAC address would make it difficult for the conglomerates’ brands to offer a smooth and overall guest WiFi experience — even if they’re all owned by the same company. 

Here’s why:

No chance to recognize returning guests across various locations. Since a new MAC address is created for each new SSID, the location’s WiFi network won’t be able to recognize a returning guest even if they’ve been to the company’s other locations in the past or have shopped the brands that are owned by the same company.

Inability to gain location-based insights across multiple locations. Companies won’t have the ability to build a history of guest activity across various locations and brands — owned by the same company—  so they will no longer be able to build an entire brand journey using their MAC address.

No tailored communications. Connecting with guests based on their previous activities in multiple locations or across multiple brands — owned by the same company— won’t be possible anymore. 

What Cloud4Wi is doing

Even if there was a push back from Apple, the direction in which the industry is heading is clear. It’s time to protect privacy and, at the same time, redesign the guest WiFi experience in the most seamless way.

Cloud4Wi has been taking steps to enable companies to power their guest WiFi, while respecting privacy at the same time. 

Cloud4Wi offers several excellent alternatives companies can use to continue offering a seamless guest WiFi experience while collecting personal data, respecting their privacy, and adding value at the same time. The best guest WiFi solution depends on the business, their specific location, and their objectives.

Request a demo with Cloud4Wi today to learn how you can empower your guest WiFi experience and turn guest WiFi into a key asset that generates value for the business.