- If you want to read a more general overview of privacy policies in mobile apps then you can read that here
We have a slightly different flow in place for mobile privacy policies than for the web version:
- Use our generator for mobile apps;
- Embed it into your app or link to it from the app;
- Possibly link to it from the app store;
- Possibly link to it from your website;
- Be happy.
- From same App Developer Agreement: The app and your marketing of the app must comply with the laws of each territory or country into which you request distribution of the app. This includes: (i) data protection, privacy and other laws and regulations relating to collection and use of user information by your app (ii) telecommunications laws and (iii) content ratings regulations. If you are required to make any disclosures to consumers prior to sale or download of the app, you must provide those in the app description field. Those may include your full contact information, notice that an app supports in-app purchases, or other disclosures. You must make such notices sufficiently prominent as is required by local law. Your app must not require further export, import or technology control licensing from any government. You must disclose to Microsoft any controlled technology employed, used or supported by your app. You may not use the Windows Store or any services or tools made available for the development of apps for any illegal activity.
- Same App policies I (2.7.4): If your app publishes or makes available location data obtained from the Location Service API to any other service or other person (including advertising networks), your app must implement a method to obtain opt-in consent. To “implement a method to obtain ‘opt-in’ consent,” the app must:
- Same App policies II (2.8): If your app (a) accesses or uploads a user’s Contacts, Photos, Phone number, SMS history, Browsing history or any other data reasonably considered personal in nature, or if your app shares any of the foregoing information with third-party services or individuals, or (b) shares any unique device or user IDs, combined with user information, with third-party services or individuals, the app must implement a method to obtain the userâ€™s “opt-in” consent. To “implement a method to obtain ‘opt-in’ consent,” the app must:
- The California Attorney General is working on making all apps privacy regulations compliant and working on this with the big platform providers like Microsoft. This situation could therefore change down the road.
- Log into your Windows Phone Dev Center account
A lot of people ask for sample privacy policies for apps. Let’s start with the legal minimum requirements. A good starting point is the California Online Privacy Protection act (CalOPPA), and even better Europe’s minimum requirements since they are more refined:
CalOPPA minimum requirements:
Provide info about the personally identifiable information (PII) like:
- a description of the types of PII collected and disclosed by the operator;
- a description of the process by which a consumer can access and request changes to his or her PII, if available;
- an effective date
EU Privacy Directives minimum requirements:
- who you are (identity and contact details),
- what precise categories of personal data the app wants to collect and process,
- why the data processing is necessary (for what precise purposes),
- whether data will be disclosed to third parties (not just a generic but a specific
description to whom the data will be disclosed),
- what rights users have, in terms of withdrawal of consent and deletion of data
1) Define the services and categories of data collection your app is making use of.
3) You can either link to your policy or embed the text into your app.