Apple is about to launch a crackdown on apps without robust privacy policies.
But what exactly has changed in Apple’s terms and conditions? And how can developers prepare themselves for the change? We’ve put our heads together to try to give you the answers.
Why has Apple shifted its approach to user privacy?
Apple’s approach has changed because of legal, political and cultural changes in attitudes to protecting individual user privacy.
From a legal perspective, the European General Data Protection Regulation (GDPR) – which was enacted in May 2018 – has played a big role in shifting expectations of privacy.
However, wider cultural and political shifts have also increased the emphasis on user data rights. The collection and use of Facebook meta-data to distribute “fake news” across the world has led to many users questioning how companies use their personal data.
As a result, companies like Apple must be seen to be taking serious action in implementing privacy policies to both fulfil a legal and a cultural responsibility to users.
- Identify what data, if any, the app/service collects, how it collects that data, and all uses of that data.
- Explain its data retention/deletion policies and describe how a user can revoke consent and/or request deletion of the user’s data.
What impact will this have on app businesses?
The rule change is likely to have a different impact on businesses releasing apps onto the store.
For companies who have been running apps that have been processing data since May 2018, dealing with this rule change shouldn’t be a challenge.
In some instances, this will be because the company failed to become GDPR compliant. Apple’s move should therefore provide a handy kick to those companies to get on with creating one.
How can we make sure we’re compliant by the 3rd October?
However, it’s really important to remember that compliance is a long term business process and not a one-shot activity.
To be truly compliant with user privacy in the longer term, app businesses must ensure that both their technology and businesses are designed in such a way to protect user privacy.