Re: still have a backdoor though right?
Pretty much all data is encrypted in iCloud, bar emails, by default.
Consistent with standard industry practice, iCloud does not encrypt data stored on IMAP mail servers. All Apple email clients support optional S/MIME encryption.
I imagine there are good reasons for storing IMAP data unencrypted out of the box. The protocol supports server-side search, for example.