Apple is changing the relay domains behind Sign in with Apple and Hide My Email, pushing developers and email providers to update validation, allowlists, and routing rules before the rollout starts. Without those updates, users may run into trouble creating ac
For users relying on Sign in with Apple and Hide My Email. the privacy promise is simple: they can interact with apps and websites without handing over a personal email address. But behind that convenience. Apple is quietly swapping the domains those privacy relays use—an adjustment that can trip up services that aren’t ready.
A June 15 developer notice told developers to update account systems, email validation tools, and allowlists ahead of the rollout. Email service providers were also asked to review filtering, suppression, and routing rules tied to Apple’s current relay domains before the transition begins.
The change affects two privacy features. Sign in with Apple currently generates relay addresses ending in privaterelay.appleid.com. Hide My Email generates relay addresses on icloud.com. For new addresses created through either service, Apple says the relay domain will move to private.icloud.com.
Existing relay addresses, Apple says, will continue forwarding messages normally after the transition. That detail matters, because it means the privacy forwarding layer may still work. The problem is that many systems don’t just pass emails along—they make decisions based on the domain in the address.
Apple is warning that domain-specific rules used for validation and processing could fail when new relay addresses appear. In the developer notice. addresses ending in privaterelay.appleid.com and icloud.com were specifically highlighted. with developers urged to review account validation logic. allowlists. and other workflows that recognize those domains.
Filtering, suppression, and routing rules are also on the list. Apple told providers to review those systems so they can properly handle new addresses created after the rollout.
If organizations don’t adjust, users may feel it in the moments that matter most for account access. The notice lays out the potential fallout: people could encounter issues creating accounts. resetting passwords. receiving login verification codes. or accessing other account-related emails. Even with forwarding continuing to function normally for existing relays. account access problems can still occur if the rest of the pipeline can’t recognize or trust the new relay domain.
Apple has not announced a launch date. Still, the message is clear: developers and email providers have been urged to prepare before the transition begins—because for privacy tools, a tiny change in an email domain can turn a smooth login into a dead end.
Apple Sign in with Apple Hide My Email email domains relay addresses developers account validation allowlists routing rules cybersecurity