By backdoor, I meant the capability to implement one.

The OEM looking for greater controls on their platform, would be considered the "data owner", here.

There's no real way to prevent that.