- In the EU — GDPR (General Data Protection Regulation)
If the app will be distributed beyond the local market, it must comply not only with local but also international acts. Non-compliance with legislative requirements may result in a fine of up to 2% of the company’s annual gross receipts. For example, in 2022, the French CNIL (National Commission on Informatics and Liberties) fined Google €150 million and Facebook €60 million, stating that “facebook.com, google.fr, and youtube.com do not allow users to ‘opt-out of cookies’ as easily as they ‘accept’ them.”
- For iOS apps, this is stated in the Review App Store:
- For Android apps, the requirements are outlined in the Policy Center:
Although Privacy Policies may vary depending on the type of app, there are some key components that should always be included:
◉ Types of Collected Data
This section lists the information provided by the user and the information obtained from other sources. The section should explain in detail what data is used, including account information, created content, payment information, user actions, third-party integrations, mobile device information, log data, IP addresses, cookies, etc. For example, the Fetch app lists the information it collects:
◉ Use of Data
◉ Disclosure to Third Parties
The policy should disclose who the app shares user data with, such as third-party analytics or advertising providers. For example, Roots, an app for panic attacks, indicates how information is shared with Facebook:
◉ Security Measures
The policy should describe in detail the measures taken to protect user data, such as encryption and access control. The measures taken by NeuroNation are shown below.
User rights should also be outlined: the policy should inform users of their rights, such as the right to access, correct, and delete their own data.
◉ Children’s Privacy
Even if the app is not intended for children, this topic is best addressed separately in the policy. Watermelon Prober, an app for checking watermelon ripeness, did this as follows:
- Do it yourself. To do this, you will need to study the relevant legislation, analyze the existing policies of similar apps, and consult with a lawyer to avoid mistakes.
- Shopify. The service offers a range of features, such as automatic updates, multilingual support, and GDPR compliance. Shopify’s customizable templates are easily adaptable to the needs of a specific mobile app.
Do I need to create two different Privacy Policies for App Store and Google Play?
This article is not a substitute for legal advice. We are not lawyers, but excellent specialists in the advertising business. Our Mobio Group team tracks all changes in the digital market and uses all our experience to help your app fully realize its potential and grow your business.