If a company like Apple was to one day allow BTC to be held natively they wouldn't want transactions to be able to be sent anywhere. One Webkit exploit combined with userland root access and hundred of millions users wallets are empties instantaneously.
Why would someone want to store their funds on a company's server which would hold the private keys of their address
But if the BTC are somehow held in a way that they can only be send to white listed addresses their is recourse for users.
Afaik, this is not possible. The blockchain can not reject an address if it is valid and meets all the necessary requirements. However, it is possible such an API could be built on a software system.