How to Actually Hide Photos on Your iPhone
Everyone has photos they'd rather keep private. Medical documents, legal paperwork, personal moments — things that are nobody's business but yours. Apple gives you a built-in way to hide them, and for casual use it works fine. But if you need real privacy, it's worth understanding what the Hidden album actually does and where it falls short.
Apple's Hidden Album
Since iOS 14, you can hide photos from your main library by selecting them and tapping Hide from the share menu. The photos move to a Hidden album at the bottom of the Albums tab, out of your main feed, Memories, and search results.
Starting with iOS 16, Apple added a lock: the Hidden album requires Face ID, Touch ID, or your device passcode to open. That was a meaningful improvement. Before iOS 16, anyone who picked up your unlocked phone could scroll to the Hidden album and open it freely.
For hiding a surprise birthday party from a spouse who borrows your phone, the Hidden album is perfectly fine. For anything more sensitive, it starts to show its limits.
What the Hidden Album Doesn't Do
The Hidden album is a visibility filter, not a security boundary. Here's what that means in practice:
- Same passcode, same access. The Hidden album unlocks with your device passcode — the same one you hand to a friend to make a call, or type in front of someone at a coffee shop. There's no separate PIN or password. Anyone who knows your passcode can open the Hidden album.
- It's visible in Settings. Even if someone doesn't open the album, they can see that it exists. The toggle at Settings → Apps → Photos → Hidden Album makes it obvious you're hiding something, even if they can't see what.
- Locked into iCloud. Hidden photos are still part of your iCloud Photos library. You can't move them to a different storage provider, back them up independently, or take them with you if you ever leave Apple's ecosystem. Your private photos live wherever Apple decides they live.
- No metadata stripping. Hidden photos still carry all their original metadata: GPS coordinates, device model, timestamps, camera settings. If you export or share a hidden photo, all that data goes with it.
- Still part of the Photos database. Hidden photos live in the same system database as your visible ones. Third-party apps that you've granted photo library access to may still be able to see them, depending on the access level you've granted.
None of this means the Hidden album is bad. It's useful for what it is. But it was designed for convenience, not security. If you're relying on it to protect sensitive material, you should know the difference.
What Real Privacy Looks Like
If your goal is to keep photos genuinely private — not just out of sight, but out of reach — there are a few things that matter:
- Encryption before upload. The photos should be encrypted on your device before they go anywhere. Not encrypted by the cloud provider on their servers with their key — encrypted by you, with a key only you hold.
- Separate access control. A private vault should have its own PIN or password, independent of your device passcode. If someone unlocks your phone, they still shouldn't be able to open the vault.
- Separate storage. Private photos shouldn't sit in the same database as your photo library. They should live in their own encrypted container, invisible to other apps.
- Metadata stripping. Location data, device identifiers, and timestamps should be removed on import, not carried along silently.
- Freedom to migrate. Your private photos shouldn't be locked into one provider. You should be able to move your data between cloud storage accounts whenever you want, without losing encryption or starting over.
- Encrypted sharing without the internet. If you need to show someone a private photo, you shouldn't have to upload it to a messaging app or give up encryption. Proximity-based sharing — encrypted, device-to-device, with no server in between — keeps private photos private even when you share them.
These aren't exotic requirements. They're just what "hidden" should mean when the stakes are real.
This is what Media Den does.
Media Den is a private photo and video vault for iPhone. Every file is encrypted with AES-256-GCM on your device before it leaves — your cloud provider (Amazon S3, Google Drive, or iCloud Drive) only ever sees ciphertext. The app has its own 6-digit PIN with lockout, blurs itself in the app switcher, and strips GPS, EXIF, and XMP metadata on import. There are no Media Den servers in the data path. No ads, no tracking, no analytics.
If you care about keeping your photos private — actually private — it might be worth a look.