Let us go through this systematically. Feel free to skip a section you might already know enough about.
Easy check: Am I collecting/storing/sharing personal information like email, names or sensitive data such as payments information or am I using a third party service that accesses that information?
If you want to read up the statements by Google in their documentation and terms, you can find them below following the links or by reading the excerpts shown.
From the Developer Console Help:
- Log into your Google Play Developer Console
- After that, select Store Listing.
- Lastly, be sure to click Save or update.
5) What if I’m using sensitive/dangerous Android permissions?
Design pattern supplied by the Permissions Pattern Library
6) About Prominent Disclosure requirements
This part in Google’s User Data policy is key: “If your app collects and transmits personal or sensitive user data unrelated to functionality described prominently in the app’s listing on Google Play or in the app interface, then prior to the collection and transmission, it must prominently highlight how the user data will be used and have the user provide affirmative consent for such use.“
If you collect and transmit personal or sensitive user data unrelated to functionality described prominently in the app’s listing on Google Play or in the app interface with your app, then you need add prominent disclosures. You can read more about prominent disclosures it here.
A lot of people ask for sample privacy policies for apps. Let’s start with the legal minimum requirements. A good starting point is the California Online Privacy Protection act (CalOPPA), and even better Europe’s minimum requirements since they are more refined:
Since iubenda and mobile apps are international practically by definition, let us take some hints from two relevant diverse entities far apart from each other:
“” by the Attorney General of California and the “ ” the document produced by the German data protection agencies (which we’ll summarize in English).
The most important takeaway is, that it is ok, even encouraged, to be creative. Don’t forget to back the creativity up with the actual readable full version of your policy.
In the section Lesbarkeit (readability), the data protection authorities outline that, because of the small screen real-estate, it is particularly useful to create small “categories that can be opened one by one”.
The most important takeaway here is, that a layered approach is state of the art and explicitly welcomed by the data protection authorities for mobile apps.
We think these are very solid guidelines to be creative within. Let us show you:
- Use our generator for mobile apps;
- Embed it into your app or link to it from the app;
- Link to it from the app store;
- Possibly link to it from your website;
- You’re done.
All our (other) guides can be found here:
Other related interesting reading:
- If you want to read a more general overview of privacy policies in mobile apps then you can read that here
- If you want to read a more specific post about an Android permissions warning “Action Required *Policy issue*” then you may read this post