According to recent update of apple review guideline starting from January 31, 2022: all apps that allow for account creation must also allow users to initiate deletion of their account from within the app Our app currently allow to initiate the deletion process within an app, although user is redirected to the web page, where she needs to confirm it in order to make it happen. The web part of process is conducted in the SFSafariViewController, which is still a part of the app, so here is the question, is this enough to meet review guidelines criteria?
Search results for
5.1.1
410 results found
Selecting any option will automatically load the page
Post
Replies
Boosts
Views
Activity
Having the same issue on SDK42. { name: APPNAME, version: 0.0.1, description: , author: , private: true, main: node_modules/expo/AppEntry.js, scripts: { start: expo r -c, eject: expo eject, android: expo start --android, ios: expo start --ios, test: jest }, dependencies: { @bugsnag/expo: 6.5.1, @expo/vector-icons: ^12.0.0, @react-native-community/slider: 3.0.3, @react-navigation/bottom-tabs: ^5.11.2, @react-navigation/material-top-tabs: 5.3.17, @react-navigation/native: ^5.8.10, @react-navigation/stack: ^5.12.8, crypto-js: ^4.0.0, expo: ^42.0.0, expo-ads-admob: ~10.1.2, expo-av: ~9.2.3, expo-blur: ~9.0.3, expo-contacts: ~9.2.5, expo-device: ~3.3.0, expo-facebook: ~11.3.1, expo-file-system: ~11.1.3, expo-firebase-analytics: ~4.1.0, expo-firebase-core: ~3.1.0, expo-firebase-recaptcha: ^1.3.0, expo-font: ~9.2.1, expo-image-manipulator: ~9.2.2, expo-image-picker: ~10.2.2, expo-keep-awake: ~9.2.0, expo-linking: ~2.3.1, expo-location: ~12.1.2, expo-network: ~3.2.0, expo-permissions: ~12.1.1, expo-secure-store: ~10.
Topic:
App Store Distribution & Marketing
SubTopic:
App Store Connect
Tags:
As this is outside the app, I understand it is authorised. If we are interpreting 5.1.1(x) literally as written, it would be authorised but you won't have the email address to recover the password with. so the question is how do we define a core functionality and prove it requires ID ? And whether 5.1.1.(v) supersedes 5.1.1.(x) Yes that's is probably the key question - does 5.1.1(x) only covers non core functionalities? And is password recovery a core functionality? Have not contacted support yet. I thought Apple Developer Forums would be the correct place to ask these questions first. But I can see that it's kinda quiet here :D So I'll shoot them a message I guess.
Topic:
Privacy & Security
SubTopic:
General
Tags:
Apps may request basic contact information (such as name and email address) so long as the request is optional for the user, features and services are not conditional on providing the information, ….” The way I understand it: you cannot force customer to give a contact address and need to provide the service of the app (but clause 5.1.1(v) says differently, as you noted, for Core functionalities that need ID): so the question is how do we define a core functionality and prove it requires ID ? And whether 5.1.1.(v) supersedes 5.1.1.(x) However, you could state that support like recovery of lost password for instance will not be available in such a case. As this is outside the app, I understand it is authorised. Did you contact support ?
Topic:
Privacy & Security
SubTopic:
General
Tags:
This is a massive clause change and it doesn't seem like enough people are discussing this as the update to the the anti-steering clause is the hotter topic (with everyone forgetting that its no longer of any benefit to them if users don't give you their email addresses anyway). Apps may request basic contact information (such as name and email address) so long as the request is optional for the user, features and services are not conditional on providing the information, and it complies with all other provisions of these guidelines, including limitations on collecting information from kids.” Ok. So now, if my app has account based features, they would need to register. If they register, if we don't use a phone number or email address, we would have to use a unique identifier. So ok, let's use a unique identifier. Now, that user forgets their password. Well, good luck to you, you didn't give us your email or number, so we can't verify that it was you who created the account. Like how Reddit does it. Ecommerce
I have questions around this policy why are all the apps in the App Store related to COVID-19 not allowed in the store? Also what is defined as governmental entity, hospital, insurance company, non-governmental organization, or university. These are not defined Also user information in highly-regulated fields, such as healthcare, should be submitted by a legal entity that provides these services, and not by an individual developer. I'm reaching out to see if other App developers experienced the same situation or how anyone for that matter can publish anything on the COVID-19 to assist users? Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage We found in our review that your app provides services or requires sensitive user information related to the COVID-19 pandemic. Since the COVID-19 pandemic is a public health crisis, services and information related to it are considered to be part of the healthcare industry. In addition, the seller and company names associated with your app are not
I would like to clarify the scope of section 5.1.1 (ix) of the app privacy policy, related to account sign-in. If your app supports account creation, you must also offer account deletion within the app. I understand that this will take effect from January 2022 https://developer.apple.com/news/?id=mdkbobfo Is there an exception for financial apps that include account creation / registration (e.g. banking apps)? The objective of the policy change seems to be to offer users a convenient and transparent option of unregistering from a service and deleting any related data. However, deleting a login for a banking app has more implications than just de-registering from the service (e.g. what to do with account balance, regulatory requirements may apply). Therefore direct interaction between the app user and the financial institution is likely to occur irrespective of any in-app options. Would either of these options be sufficient to comply with the iOS App Privacy Policy? Option 1 - include within the app a
The newly updated App Store Review Guideline 5.1.1(v) states that: If your app supports account creation, you must also offer account deletion within the app. The guideline leaves two important questions open: What does it mean to offer the account deletion? Is it enough to point the user to the website, email, or does the deletion need to be completed within the app? Does Apple expect a simple account deletion (in the sense of inactivation) or a full delete-all-my-data request? Is there a statement from Apple which specifies these details or has someone already receive an app rejection for it?
I have two problems in my apple account and I wish to help me. 1 - I am an apple developer, I develop many different programs in various fields, whether sports, health, educational ... etc., but I face a problem in uploading programs for my clients on my account, and this problem is that the store rejects the application because(your app does not meet all of our requirements for apps that offer highly regulated services or handle sensitive user data. Specifically: The account that submits the app must be enrolled in the Apple Developer Program as an organization, and not as an individual. The guideline 5.1.1(ix) requirements give App Store users confidence that apps operating in highly regulated fields or that require sensitive user information are qualified to provide these services and will responsibly manage their data.),and I don't know what are the steps necessary to be able to upload my client's applications in various categories? 2-what are the steps necessary to increase my limitation in push
We got this rejection today: Regarding guideline 5.1.1, Since the COVID-19 pandemic is a public health crisis, services and information related to it are considered to be part of the healthcare industry. In addition, the seller and company names associated with your app are not from a recognized institution, such as a governmental entity, hospital, insurance company, non-governmental organization, or university. Per section 5.1.1 (ix) of the App Store Review Guidelines, apps that provide services or collect sensitive user information in highly-regulated fields, such as healthcare, should be submitted by a legal entity that provides these services, and not by an individual developer. For our app Pandaist - which is a Chinese language learning app. The app does have a few COVID-related stories, but it isn't specifically about COVID - it's just standard news stories. It doesn't provide any services about COVID. I see other companies not fitting this profile, like the BBC, Fox News, and the AP h
Hello Forum Members I tried to upload my App the other day and it got rejected because I am offering highly regulated services or sensitive user data. Apple's solution for is that I must enroll as an organization and not as an Individual. As I am not able to do this yet, I tried to remove all sensitive user data, but as I resubmitted the App it got rejected again. So here is my question: Is there a workaround for this? Or can I look up what is considered highly regulated services and sensitive user data? I could not find anything... Thanks in Advance Mattis Rinke
Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage We noticed that your app requires users to register with personal information to purchase non account-based in-app purchase products, which does not comply with the App Store Review Guidelines. Apps cannot require user registration prior to allowing access to app content and features that are not associated specifically to the user. Next Steps User registration that requires the sharing of personal information must be optional or tied to account-specific functionality. To resolve this issue, please make it clear to the user that registering will enable them to access the content from any of their iOS devices and provide them a way to register at any time, if they wish to later extend access to additional iOS devices. Please note that although guideline 3.1.2 of the App Store Review Guidelines requires an app to make subscription content available to all the iOS devices owned by a single user, it is not appropriate to force user registrat
Our App is rejected with the below message. We got rejected multiple times for this guideline and not sure how to handle this. We used to ask for their target weight/current weight but we got rid of that because we thought weight may be considered sensitive data. Now we only store the number of hours worked out and the numbers are manually inputted by users. Does Apple require any fitness-related app to be published under an organization? Is there anything we can do to publish this app under individual developers? Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage We found in our review that your app does not meet all of our requirements for apps that offer highly regulated services or handle sensitive user data. Specifically: The account that submits the app must be enrolled in the Apple Developer Program as an organization, and not as an individual. The guideline 5.1.1(ix) requirements give App Store users confidence that apps operating in highly regulated fields or that requi
My app allows users to compete in quizzes with other players, with each quiz having a $5 entry fee. The winner of the quiz will receive a digital gift card. The amount of the gift card depends on the number of players in the quiz. This app has gone through a long review process. It initially failed to Guideline 5.1.1: We found in our review that your app does not meet all of our requirements for apps that offer highly regulated services or handle sensitive user data. Specifically: The account that submits the app must be enrolled in the Apple Developer Program as an organization, and not as an individual. Which made me to believe it was a Gambling app (even though it's a skill-based game, not a chance-based game which is what 'Gambling' is defined as). So I established a company and then resubmitted the app. It then failed on the following guideline: Guideline 3.2.2 - Business - Other Business Model Issues - Unacceptable The primary purpose of your app is to encourage users to watch ads or perform ma
App Rejected stating Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage We found in our review that your app does not meet all of our requirements for apps that offer highly regulated services or handle sensitive user data. Specifically: The account that submits the app must be enrolled in the Apple Developer Program as an organization, and not as an individual. The guideline 5.1.1(ix) requirements give App Store users confidence that apps operating in highly regulated fields or that require sensitive user information are qualified to provide these services and will responsibly manage their data. Next Steps To resolve this issue, it would be appropriate to take the following steps: Your app must be submitted through an Apple Developer Program account enrolled as an organization. You may either enroll in a new Apple Developer Program account as an organization, or request that your individual account be converted to an organization account by contacting Apple Developer Support.
Topic:
App Store Distribution & Marketing
SubTopic:
App Store Connect
Tags:
App Review
App Store Connect
Feedback Assistant
App Submission