iPhone XS and XS Max in silver, space gray, and gold.
All New and Updated App Store Apps Required to Have a Privacy Policy Starting October
Apple has announced that, starting October 3, 2018, all new apps and app updates will require a privacy policy in order to be submitted for distribution on the App Store or through TestFlight for beta testing purposes.
Apple already requires a privacy policy for apps that access personal information, including apps that offer subscriptions, accept Apple Pay, or use Apple frameworks such as HomeKit, HealthKit, or CareKit. Now, the requirement will extend to all apps, including basic ones that do not share data in any way.
It does not appear that existing apps on the App Store will be affected by this move until they are updated on October 3 or later, so long-outdated apps may remain without a privacy policy if they are no longer maintained.
Apple detailed the upcoming changes in the News section of its App Store Connect portal for developers on Thursday:
Apple already requires a privacy policy for apps that access personal information, including apps that offer subscriptions, accept Apple Pay, or use Apple frameworks such as HomeKit, HealthKit, or CareKit. Now, the requirement will extend to all apps, including basic ones that do not share data in any way.
It does not appear that existing apps on the App Store will be affected by this move until they are updated on October 3 or later, so long-outdated apps may remain without a privacy policy if they are no longer maintained.
Apple detailed the upcoming changes in the News section of its App Store Connect portal for developers on Thursday:
Starting October 3, 2018, App Store Connect will require a privacy policy for all new apps and app updates in order to be submitted for distribution on the App Store or through TestFlight external testing. In addition, your app's privacy policy link or text will only be editable when you submit a new version of your app.Apple elaborates on its privacy policy requirements in its App Store Review Guidelines, under Section 5.1.1:
To add or edit your privacy policy for the App Store:
1. Go to My Apps in App Store Connect, and click on your app.
2. Under App Store, click on App Information.
3. In the top right corner, add your privacy policy link for iOS apps or macOS apps, or enter text directly for tvOS apps.
4. Click Save.
To add your privacy policy link to your app for external TestFlight distribution:
1. Go to My Apps in App Store Connect, and click on your app.
2. Under TestFlight, click Test Information.
3. Add your privacy policy link for iOS apps, or enter text directly for tvOS apps.
4. Click Save.
Privacy Policies: All apps must include a link to their privacy policy in the App Store Connect metadata field and within the app in an easily accessible manner. The privacy policy must clearly and explicitly:App Store Connect has long provided a privacy policy metadata field for developers to submit a link to their privacy policy webpage for iOS apps. On the Apple TV, there is no web browser, so App Store Connect has a text box for developers to past the full text of their privacy policy displayed in app.
- Identify what data, if any, the app/service collects, how it collects that data, and all uses of that data.
- Confirm that any third party with whom an app shares user data (in compliance with these Guidelines) — such as analytics tools, advertising networks and third party SDKs, as well as any parent, subsidiary or other related entities that will have access to user data — will provide the same or equal protection of user data as stated in the app's privacy policy and required by these Guidelines.
- Explain its data retention/deletion policies and describe how a user can revoke consent and/or request deletion of the user's data.
[ 46 comments ]
Top Rated Comments
(View all)
3 weeks ago
I think Apple should change policy on allowing apps access to people's contacts (such as WhatsApp). I don't like that they can—often with a single single tap, without knowing too much of what's being asked—hit "Ok" and upload their full address book (including my entry) to Zuckerberg's servers without my more acute understanding re potential consequences of said seemingly innocuous action. And without our permission. What did one dev. say, "it's the wild-west of data collection". Given how much Apple care about security, I'm surprised Apple still allows this.
3 weeks ago
Just wrote mine. What a pain. I don’t collect any information. Would be nice if we could just check a “we don’t collect anything” box in appstoreconnect.
3 weeks ago
I think Apple should change policy on allowing apps access to people's contacts (such as WhatsApp). I don't like that they can—often with a single single tap, without knowing too much of what's being asked—hit "Ok" and upload their full address book (including my entry) to Zuckerberg's servers without my more acute understanding re potential consequences of said seemingly innocuous action. And without our permission. What did one dev. say, "it's the wild-west of data collection". Given how much Apple care about security, I'm surprised Apple still allows this.
that's the single reason I've never used WhatsApp. I hate the thought that I have to give them access to the phone numbers, addresses, and email addresses of my friends and family without them being able to consent.
3 weeks ago
I think this will help with transparency (great) but I see another ancillary benefit of weeding out low quality non-viable apps. Devs are going to have to decide if their apps are worth the effort and those that choose not to update with privacy info will find their apps in the realm of abandonware (hopefully)... sort of a self cleaning roomba for the app store.
3 weeks ago
If this just means more reams of fine print in very legal language, then people will generally not read them or understand it. Apple should instead force developers to disclose the ramifications in terms of what can go wrong - kind of like the "Risk" sections in a SEC 10Q or 10K form. Give me a list of reasons why anything I do with this app can go (horrendously) wrong - "my security team is my dog, and he may not keep your health records secure for long"
3 weeks ago
How are single devs supposed to deal with this? Let's say you just use Google Analytics (or Firebase). How complicated must this be? More importantly, WHAT IF APPLE STARTS APPROVING OR DENY BASED ON HOW DETAILED YOUR POLICY TEXT IS?
That’s my concern too.Another aspect I’ve read is that the app must include a link to the privacy details whether the app is web enabled or not. So without more clarification it looks like a small developer would have to then have a website that the app can connect to just to tell the user that they’re not collecting anything and that except for that link it wouldn’t otherwise have even connected to the net?
3 weeks ago
I didn't check but I think it will impact the B2B store as well, but a standard privacy page should be enough. One of the advantages of working for companies with the enterprise membership is avoid dealing with iTunes Connect and all the boilerplate that goes into publishing an app.
As a user I'm ok with more transparency given to the customer, but I think very few people actually read that stuff
As a user I'm ok with more transparency given to the customer, but I think very few people actually read that stuff
3 weeks ago
How are single devs supposed to deal with this? Let's say you just use Google Analytics (or Firebase). How complicated must this be? More importantly, WHAT IF APPLE STARTS APPROVING OR DENY BASED ON HOW DETAILED YOUR POLICY TEXT IS?
[ Read All Comments ]
As part of its digital health initiative in iOS 12, Apple has introduced some improvements to the way app notifications can be managed, enabling users to more easily reduce the number of daily...
Apple today seeded the first beta of an upcoming tvOS 12.1 update to its public beta testing group, two days after providing the beta to developers and three days after releasing the tvOS 12 update.
...
Hulu today is rolling out a new update for Hulu.com, bringing it in line with the design and user interface that users should be familiar with if they use Hulu on smartphones and TVs, like iOS and...
There's nothing worse than waking up in the middle of the night, glancing over at your iPhone to check the time, and seeing a bunch of notifications that demand your attention and distract you...
Apple Maps now supports transit in New Zealand, enabling users to navigate with public transportation in most populated areas of the country.
In the largest city of Auckland, directions are...
The Apple Watch Series 4 has multiple new watch faces for users to choose from, including Fire, Water, Liquid Metal, and Vapor faces that were custom-designed for Series 4 to interact with the edges...
In iOS 12, Apple's digital health push includes a couple of special new features for iPhone and iPad users who want to cut down on their app usage: App Limits and Downtime. In this article,...
Jon M. Chu, best known for directing hit movie "Crazy Rich Asians," was provided with one of Apple's new iPhone XS Max models by WIRED, which he used to shoot a short film in 4K to test...
