diff --git a/insights/sender/icloud_private_relay.yml b/insights/sender/icloud_private_relay.yml
new file mode 100644
index 00000000000..9f3d045ccde
--- /dev/null
+++ b/insights/sender/icloud_private_relay.yml
@@ -0,0 +1,5 @@
+name: "Routed through Apple iCloud Private Email relay"
+type: "query"
+source: |
+  regex.icontains(sender.email.email, '_at_.*@icloud.com')
+severity: "informational"