ON THIS PAGE
- Data usage. Explain why you collect personal information. You should have a legitimate interest to collect user data. The data collection could be used for your app’s functionalities like buying a product on an e-commerce store, for providing user personalization, or for targeted advertising. Be specific and do not use general terms.
- Third parties. Reveal if you share or sell personal information to third parties and disclose the identity of these third parties. Explain the reasons why you share or sell personal information to them.
- User rights and consent. Inform users about their rights regarding their personal data and inform users how to exercise these rights, how to manage their data preferences, and how to revoke user consent for data collection. Under the GDPR, the app users have the following rights: the right to be informed, the right to access, the right to rectification, the right to erasure, the right to restrict processing, the right to data portability, the right to object, and the rights around automated decision-making and profiling.
- Data retention policy. Explain your data deletion policy and practices. You must not keep user data longer than you need it. Think carefully about how long to store user data and when to delete it.
- Security measures. Inform users what security practices your app implements. Your iOS app could use encryption, access controls, Transport Layer Security (TLS) implements for end-to-end encryption, verification or authentication methods, refresh sessions more often, send less personal information or split the data into several requests, and other security measures. You should take adequate security measures to prevent unauthorized access and data breaches since this would affect users’ trust in your app and is strictly regulated by privacy laws.
- Identity of the company. Disclose the identity of the company and provide contact information like email or phone number. It should be easy to reach the company regarding users’ personal data management and preferences. Provide contact details for users to contact you with privacy-related concerns.
- Children's privacy. If your app collects data from children, describe the procedure to obtain parental consent. Handle children's data with special care. Under the GDPR, this parental consent is needed for children below the age of 16 years. Under the CCPA, parental consent is needed if the child is under the age of 13 years old. In the US, the Children's Online Privacy Protection Act (COPPA) protects children under the age of 13.
- Compliance with all major privacy regulations.
- Pre-defined choices. It offers an easy-to-fill form with lists of pre-defined choices to pick from.
- Enter your business details.
- Choose which information you collect and how it is processed.
Frequently Asked Questions