Answering app privacy questions
As you get ready to select your answers from the options presented in App Store Connect, keep in mind:
- You need to identify all of the data you or your third-party partners collect, unless the data meets all of the criteria for optional disclosure listed below.
- Your app’s privacy practices should follow the App Store Review Guidelines and all applicable laws.
- You’re responsible for keeping your responses accurate and up to date. If your practices change, update your responses in App Store Connect. You may update your answers at any time, and you do not need to submit an app update in order to change your answers.
Account Holders, Admins, and App Managers can learn how to enter their responses in App Store Connect.
The purpose of the label is to help your customers understand what data is collected from your app and how it is used. To complete that, you’ll need to know the types of data that you and/or your third-party partners collect from your app before answering the questions in App Store Connect. Keep in mind that even if you collect the data for reasons other than analytics or advertising, it still needs to be declared. For example, if you collect data solely for the purpose of app functionality, declare the data on your label and indicate that it is only being used for that purpose.
“Collect” refers to transmitting data off the device in a way that allows you and/or your third-party partners to access it for a period longer than what is necessary to service the transmitted request in real time.
“Third-party partners” refers to analytics tools, advertising networks, third-party SDKs, or other external vendors whose code you’ve added to your app.
Data types that meet all of the following criteria are optional to disclose:
- The data is not used for tracking purposes, meaning the data is not linked with Third-Party Data for advertising or advertising measurement purposes, or shared with a data broker. For details, see the Tracking section.
- The data is not used for Third-Party Advertising, your Advertising or Marketing purposes, or for Other Purposes, as those terms are defined in the Tracking section.
- Collection of the data occurs only in infrequent cases that are not part of your app’s primary functionality, and which are optional for the user.
- The data is provided by the user in your app’s interface, it is clear to the user what data is collected, the user’s name or account name is prominently displayed in the submission form alongside the other data elements being submitted, and the user affirmatively chooses to provide the data for collection each time.
Data types must meet all criteria in order to be considered optional for disclosure. If a data type collected by your app meets some, but not all, of the above criteria, it must be disclosed in App Store Connect.
Examples of data that may not need to be disclosed include data collected in optional feedback forms or customer service requests that are unrelated to the primary purpose of the app and meet the other criteria above.
For the purpose of clarity, data collected on an ongoing basis after an initial request for permission must be disclosed.
Regulated Financial Services Disclosure
Data types that are collected by an app that facilitates regulated financial services and where the data collected meets all of the following criteria are optional to disclose:
- Collection of the regulated data is in accordance with a legally required privacy notice under applicable financial services or data protection laws or regulations (e.g., GDPR or GLBA).
- Collection by the app of that data occurs only in cases that are not part of your app’s primary functionality, and which are optional for the user.
- Such notice provides that data is not shared with unaffiliated third parties to market other products and services.
- Such data is not linked with third-party data for advertising purposes or shared with a data broker except for purposes of fraud detection or prevention or security purposes, or with a consumer reporting agency for credit reporting.
Data types must meet all criteria in order to be considered optional for disclosure. If a data type collected by your app meets some, but not all, of the above criteria, it must be disclosed in your privacy section.
Health Research Disclosure
Data types that are collected as part of a health research study and where the data collected meets all of the following criteria are optional to disclose:
- The data is collected by an entity whose collection of the data is subject to an informed consent form (ICF) as part of a health research study that has been reviewed and approved by an institutional review board or ethics review board.
- All such data collection must follow the relevant App Store Guidelines and the data may not be used for tracking purposes.
If the data type collected by your app meets some, but not all, of the above criteria, it must be disclosed in your privacy section.
Types of data
Refer to the list of data types below and compare them to the data collection practices in your app.
|Name||Such as first or last name|
|Email Address||Including but not limited to a hashed email address|
|Phone Number||Including but not limited to a hashed phone number|
|Physical Address||Such as home address, physical address, or mailing address|
|Other User Contact Info||Any other information that can be used to contact the user outside the app|
|Health & Fitness|
|Health||Health and medical data, including but not limited to data from the Clinical Health Records API, HealthKit API, MovementDisorderAPIs, or health-related human subject research or any other user provided health or medical data|
|Fitness||Fitness and exercise data, including but not limited to the Motion and Fitness API|
|Payment Info||Such as form of payment, payment card number, or bank account number. If your app uses a payment service, the payment information is entered outside your app, and you as the developer never have access to the payment information, it is not collected and does not need to be disclosed.|
|Credit Info||Such as credit score|
|Other Financial Info||Such as salary, income, assets, debts, or any other financial information|
|Precise Location||Information that describes the location of a user or device with the same or greater resolution as a latitude and longitude with three or more decimal places|
|Coarse Location||Information that describes the location of a user or device with lower resolution than a latitude and longitude with three or more decimal places, such as Approximate Location Services|
|Sensitive Info||Such as racial or ethnic data, sexual orientation, pregnancy or childbirth information, disability, religious or philosophical beliefs, trade union membership, political opinion, genetic information, or biometric data|
|Contacts||Such as a list of contacts in the user’s phone, address book, or social graph|
|Emails or Text Messages||Including subject line, sender, recipients, and contents of the email or message|
|Photos or Videos||The user’s photos or videos|
|Audio Data||The user’s voice or sound recordings|
|Gameplay Content||Such as saved games, multiplayer matching or gameplay logic, or user-generated content in-game|
|Customer Support||Data generated by the user during a customer support request|
|Other User Content||Any other user-generated content|
|Browsing History||Information about content the user has viewed that is not part of the app, such as websites|
|Search History||Information about searches performed in the app|
|User ID||Such as screen name, handle, account ID, assigned user ID, customer number, or other user- or account-level ID that can be used to identify a particular user or account|
|Device ID||Such as the device’s advertising identifier, or other device-level ID|
|Purchase History||An account’s or individual’s purchases or purchase tendencies|
|Product Interaction||Such as app launches, taps, clicks, scrolling information, music listening data, video views, saved place in a game, video, or song, or other information about how the user interacts with the app|
|Advertising Data||Such as information about the advertisements the user has seen|
|Other Usage Data||Any other data about user activity in the app|
|Crash Data||Such as crash logs|
|Performance Data||Such as launch time, hang rate, or energy use|
|Other Diagnostic Data||Any other data collected for the purposes of measuring technical diagnostics related to the app|
|Other Data Types||Any other data types not mentioned|
You should have a clear understanding of how each data type is used by you and your third-party partners.
For example, collecting an email address and using it to authenticate the user and personalize the user’s experience within your app would include App Functionality and Product Personalization.
|Third-Party Advertising||Such as displaying third-party ads in your app, or sharing data with entities who display third-party ads|
|Developer’s Advertising or Marketing||Such as displaying first-party ads in your app, sending marketing communications directly to your users, or sharing data with entities who will display your ads|
|Analytics||Using data to evaluate user behavior, including to understand the effectiveness of existing product features, plan new features, or measure audience size or characteristics|
|Product Personalization||Customizing what the user sees, such as a list of recommended products, posts, or suggestions|
|App Functionality||Such as to authenticate the user, enable features, prevent fraud, implement security measures, ensure server up-time, minimize app crashes, improve scalability and performance, or perform customer support|
|Other Purposes||Any other purposes not listed|
Data linked to the user
You’ll need to identify whether each data type is linked to the user’s identity (via their account, device, or other details) by you and/or your third-party partners. Data collected from an app is often linked to the user’s identity, unless specific privacy protections are put in place before collection to de-identify or anonymize it, such as:
- Stripping data of any direct identifiers, such as user ID or name, before collection.
- Manipulating data to break the linkage and prevent re-linkage to real-world identities.
Additionally, in order for data not to be linked to a particular user’s identity, you must avoid certain activities after collection:
- You must not attempt to link the data back to the user’s identity.
- You must not tie the data to other datasets that enable it to be linked to a particular user’s identity.
Note: “Personal Information” and “Personal Data”, as defined under relevant privacy laws, are considered linked to the user.
You’ll need to understand whether you and/or your third-party partners use data from your app to track users and, if so, which data is used for this purpose.
“Tracking” refers to linking data collected from your app about a particular end-user or device, such as a user ID, device ID, or profile, with Third-Party Data for targeted advertising or advertising measurement purposes, or sharing data collected from your app about a particular end-user or device with a data broker.
“Third-Party Data” refers to any data about a particular end-user or device collected from apps, websites, or offline properties not owned by you.
Examples of tracking include:
- Displaying targeted advertisements in your app based on user data collected from apps and websites owned by other companies.
- Sharing device location data or email lists with a data broker.
- Sharing a list of emails, advertising IDs, or other IDs with a third-party advertising network that uses that information to retarget those users in other developers’ apps or to find similar users.
- Placing a third-party SDK in your app that combines user data from your app with user data from other developers’ apps to target advertising or measure advertising efficiency, even if you don’t use the SDK for these purposes. For example, using a login SDK that repurposes the data it collects from your app to enable targeted advertising in other developers’ apps.
The following situations are not considered tracking:
- When the data is linked solely on the end-user’s device and is not sent off the device in a way that can identify the end-user or device.
- When the data broker uses the data shared with them solely for fraud detection or prevention or security purposes.
- When the data broker is a consumer reporting agency and the data is shared with them for purposes of (1) reporting on a consumer’s creditworthiness or (2) obtaining information on a consumer’s creditworthiness for the specific purpose of making a credit determination.
Learn more about tracking.
Privacy Choices (Optional): A publicly accessible URL where users can learn more about their privacy choices for your app and how to manage them. For example, a webpage where users can access their data, request deletion, or make changes.
Your app has web views.
Data collected via web traffic must be declared, unless you are enabling the user to navigate the open web.
You collect and store IP address from your users.
Declare the relevant data types based on how you use IP address, such as precise location, coarse location, device ID, or diagnostics.
You offer in-app private messaging between users that are not SMS text messages.
Declare emails or text messages on your label. Text messages refer to both SMS and non-SMS messages.
Your app includes game saves, multiplayer matching, or gameplay logic.
Declare Gameplay Content on your label.
You collect different types of data from users depending on whether the user is a child, whether they are a free or paid user, whether they opt in, where they live, or for some other reason.
You use Apple frameworks or services, such as MapKit, CloudKit, or App Analytics.
If you collect data about your app from Apple frameworks or services, you should indicate what data you collect and how you use it. You are not responsible for disclosing data collected by Apple.
You use location, device identifiers, and other sensitive data, but only on device, and the data is never sent to a server.
Data that is processed only on device is not “collected” and does not need to be disclosed in your answers. If you derive anything from that data and send it off device, the resulting data should be considered separately.
You collect precise location, but immediately de-identify and coarsen it before storing.
Disclose that you collect Coarse Location, since the precise location data is immediately coarsened and precise location is not stored.
Your app includes free-form text fields or voice recordings, and users can save any type of information they want through those mediums, including names and health data.
Mark "Other User Content" to represent generic free form text fields and "Audio Data" for voice recordings. You’re not responsible for disclosing all possible data that users may manually enter in the app through free-form fields or voice recordings. However, if you ask a user to input a specific data type into a text field, such as their name or email, or if you have a feature that enables users to upload a particular media type, such as photos or videos, then you’ll need to disclose the specific type of data.
You collect data to service a request but do not retain it after servicing the request.
"Collect" refers to transmitting data off the device and storing it in a readable form for longer than the time it takes you and/or your third-party partners to service the request. For example, if an authentication token or IP address is sent on a server call and not retained, or if data is sent to your servers then immediately discarded after servicing the request, you do not need to disclose this in your answers in App Store Connect.
An app accesses the data only on your device and it is not sent off your device. For example, if you provide an app permission to access your location, but it only uses that data to provide app functionality on your device and does not send it to its server, it does not need to disclose that data as collected.How do I see Apple app privacy report? ›
Sharing device location data or email lists with a data broker. Sharing a list of emails, advertising IDs, or other IDs with a third-party advertising network that uses that information to retarget those users in other developers' apps or to find similar users.Can app developers see your Apple ID? ›
App developers can see the Apple ID if it has been verified by the user. The only way for an app developer to see the user's Apple ID is if the user voluntarily sends it to them.Can app developers see your photos? ›
Android apps must request permission to access sensitive user data as well as certain system features. Depending on the feature, the system might grant the permission automatically or might prompt the user to approve the request.Can Apple private history be found? ›
When you use Private Browsing, the details of your browsing aren't saved, and the websites you visit aren't shared with your other devices. Safari won't remember the pages you visit, your search history, or your AutoFill information.How can I see hidden app history? ›
- Visit your app drawer section.
- Tap on the three dots that are present at the upper-right of the device screen.
- Click on the home screen settings. ...
- Here, you will see the hidden apps that are not showing in the app list.
- Open the App Store app.
- Tap the account button , or your photo or initials, at the top of the screen.
- Tap your name or Apple ID. ...
- Scroll down and tap Hidden Purchases.
- Find the app that you want, then tap Unhide.
- To return to the App Store, tap Account Settings, then tap Done.
"Modern smartphone platforms implement permission-based models to protect access to sensitive data and system resources. However, apps can circumvent the permission model and gain access to protected data without user consent by using both covert and side channels," wrote the researchers in a sprawling report.Why do app developers want your data? ›
Sometimes an app may want access to more personal information because it is trying to gather data that could then be used for marketing. If you feel your privacy is being invaded, the best thing to do is deny access to your data or simply delete the app.Do apps share information with other apps? ›
A new study reveals the top 1000 paid and free apps share our data with third parties with impunity. This information is clearly mentioned in the new data safety section of all apps in Google's Play Store.Should I create a separate Apple ID for developer account? ›
In every other case, it's better to create a new Apple ID for your new developer account. You can create a new Apple ID directly on an iOS, iPadOS or macOS device, or you can also use Apple's web interface at appleid.apple.com. You also need to enable two-factor authentication on your Apple ID.Can apps access personal information? ›
Phone numbers, meanwhile, were shared with 12 percent of iOS apps and 9 percent of Android apps. Finally, the user's address was shared with 4 percent of iOS apps and 5 percent of Android apps. However, these stats don't fully account for the full amount of PII being shared with apps.
Software developers are most vulnerable to litigation when their mistake causes someone else to lose money. Usually that's a client. But competing companies, end users, or even your employees can also pin the blame on your company when something goes wrong. Here are six common causes of software development lawsuits.Does Apple still look at your photos? ›
Apple says it will not gain access to the messages or photos, but it will use machine learning to determine whether a photo is explicit. Kids who are sending or receiving potentially explicit photos will get a warning asking whether they are sure they want to view the image.Can apps access camera without permission? ›
A malicious app can trick the built-in Camera app into taking photos or recording videos on its behalf, and the built-in app already has the required permissions. The exploit can be executed by any app that has can access device storage, an unrelated and innocuous permission that many apps require to function.
- Step 1: Form an LLC. Your first step to protect your app idea is to make your company official. ...
- Step 2: Own the Copyright. An idea is just that – an idea. ...
- Step 3: Use Non-Disclosure Agreements. It takes a team to develop your app. ...
- Register the Trademark. ...
- Step 5: Pursue Infringement Cases.
Does incognito mode leave any trace? Yes, incognito mode does leave a data trail. It doesn't hide your browsing activity from your ISP, employer, or other websites. They can see your browsing history, location, and any personal data you may be sharing along the way.Is private mode on iPhone really private? ›
When you use Private Browsing, the details of your browsing aren't saved, and the websites you visit aren't shared with your other devices. Safari won't remember the pages you visit, your search history, or your AutoFill information.Who can see my private history? ›
Private browsing does not make you anonymous online. Anyone who can see your internet traffic – your school or employer, your internet service provider, government agencies, people snooping on your public wireless connection – can see your browsing activity.Is there a secret folder on iPhone? ›
When you hide photos and videos, they move to the Hidden album, so they don't appear in your Library, in other albums, or in the Photos widget on your Home Screen. In iOS 14 and later, you can turn off the Hidden album, so the photos are completely hidden.How do you permanently hide apps on iPhone? ›
To hide apps on your iPhone using the App Library, go to the Home Screen and tap and hold the app that you want to hide. Then select Remove App from the pop-up menu. Finally, tap Remove from Home Screen to hide the app in your App Library. Note: These steps will only work if you are running iOS 14 or later.Can you have hidden apps on iPhone? ›
Apps can't be published as a private app and in the public Google Play store at the same time. If an app with the same app ID was published by another organization (publicly or privately), you can't publish the app until the developer changes the application ID for your variant.Can you upload a private app to the app store? ›
App Store Connect lets you distribute your app privately in up to 69 regions. Upload your app for review and select the Custom App Distribution option.
These are the permission types to pay attention to when downloading a new app:
- Body Sensors. ...
- Calendar. ...
- Camera. ...
- Contacts. ...
- Location. ...
- Microphone. ...
- Phone. ...
- SMS (Text Messaging).
When it comes to mobile malware, a little bit of paranoia goes a long way. Malicious apps can steal your personal information, including sensitive financial information that can then be used to steal your identity.Can apps access data after uninstall? ›
Sure, getting rid of the program removes the item from your device, but what it doesn't do is remove any accounts that may be associated with the application. These accounts, no matter how benign the app may be, contain the personal data that you provided the app.What happens if I deny app permissions? ›
It can use the permission until you're done with the app. Don't allow: The app cannot use the setting, even when you're using the app.Is Apple Developer safe? ›
Apple is committed to the privacy and security of your information. We collect only the data needed to enable developers to be successful on Apple platforms and to provide a safe experience for users.How important is privacy in application development? ›
“Everything you do from the moment may influence not only the performance of your software but also those who use it in the context of privacy. Privacy must be your default posture even before you begin your programming journey,” Privacy Commissioner Raymund E. Liboro said at the summit.Do apps require permission to access data from apps? ›
On both Android and iPhone, apps require permissions to access sensitive data on your phone. If a developer makes an app that relies on having your contacts, for example, they must add a permission request for that access into the app's code.What information can iPhone apps access? ›
Apps may request access to things such as your location, contacts, calendars, or photos. You'll receive a prompt with an explanation the first time a third-party app wants to use this data, so you can make an informed decision about granting permission.Do my apps have access to my info on my phone? ›
Your Privacy on Mobile Apps
When you download apps, they often ask for permission to access personal information like contacts, your location, or even your camera. They may need this information to make the app work, but they also may share this information with other companies.
No, they cannot see what data is used for. However if a paid app was downloaded and billed to the carrier, they will be able to see the charge on the bill.
Stay organized with collections Save and categorize content based on your preferences. Just as an app can send data to other apps, it can also receive data from other apps as well. Think about how users interact with your application and what data types you want to receive from other applications.Can apps see what your doing? ›
An Oxford University study of nearly 1 million free Android apps in 2018 revealed that the majority of mobile apps contain utilities from companies — including Alphabet, Facebook, Twitter, Verizon, Microsoft and Amazon — that enable them to track and send data about users to these companies.Can apps access data without permission? ›
No one can access your camera without your explicit permission. The apps on your phone however have access to your phone gallery and camera. If someone has hacked your credentials for that app then he/she has access to it.Can phone companies see what you do on apps? ›
Although your phone company can track the websites you visit (the top-level domain) it cannot actually see any of the data that passes between you and the website. This is because most websites nowadays implement HTTPS encryption to prevent your data from eavesdropping.Does deleting an app get all of your information off of it? ›
Turns out, your data doesn't magically disappear when you delete an app. Apps are often part of an intricate web of interconnected tools, products, and sites that track and share your information, likely without you even realizing it.What information can apps access? ›
Android app permissions can give apps control of your phone and access to your camera, microphone, private messages, conversations, photos, and more. App permission requests pop up the first time an app needs access to sensitive hardware or data on your phone or tablet and are usually privacy-related.How do I stop apps tracking me? ›
If you want to turn off location tracking on Android apps, open the Settings app on your Android device and go to the Location option. You can turn location tracking off here.Do iPhone apps track you? ›
Manage activity tracking permissions
Go to Privacy settings to see a list of apps that requested to track your activity. On iPhone, iPad, or iPod touch, go to Settings > Privacy > Tracking. On Apple TV, go to Settings > General > Privacy > Tracking. Tap to turn off or turn on permission to track for a specific app.
While some of the reasons apps collect your data are legitimate — like tracking how you interact with them to make your experience better and to fix bugs — the company behind the app also can sell or pass this information to third parties that then target you with ads on their platforms.Can the WiFi owner see what I search? ›
Yes. The WiFi owner has access to the admin panel from the WiFi router, meaning they can see the browsing information performed on their WiFi network. In addition, routers see log information, including when and what you did on your computer.How do I stop WiFi owner from viewing my history? ›
- Use a VPN. Your internet service provider can't see your history when you use a VPN. ...
- Browse with Tor. ...
- Change your DNS settings. ...
- Install HTTPS Everywhere. ...
- Use a privacy-conscious search engine.
- 117. Document Manager.
- 217. Coin track Loan - Online loan.
- 317. Cool Caller Screen.
- 417. PSD Auth Protector.
- 517. RGB Emoji Keyboard.
- 617. Camera Translator Pro.
- 717. Fast PDF Scanner.
- 817. Air Balloon Wallpaper.