5.1.1

Hi there. I work for a company that develops a SaaS service. Users have to register before using the SaaS as all the data they save in the application must be linked to their account. Why that? Because it is a multi-platform SaaS currently running on web and Android, so, the user must have access to his/her contents on every platform he/she intends to use. Also, some features depend on our back-end system to process the data and return an analysis based on them. That said, Apple is rejecting our app claiming that we should not require the user to register an account before purchasing a subscription. The problem is: how can the user store their data in our servers without an account? We do offer a free tier account, but the users must be logged in to have access to their data and have the analysis performed by the back-end service. Does anybody have gone through a similar issue? I need clarifications on how to solve this. Thanks in advance.

App Rejected stating Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage We found in our review that your app does not meet all of our requirements for apps that offer highly regulated services or handle sensitive user data. Specifically: The account that submits the app must be enrolled in the Apple Developer Program as an organization, and not as an individual. The guideline 5.1.1(ix) requirements give App Store users confidence that apps operating in highly regulated fields or that require sensitive user information are qualified to provide these services and will responsibly manage their data. Next Steps To resolve this issue, it would be appropriate to take the following steps: Your app must be submitted through an Apple Developer Program account enrolled as an organization. You may either enroll in a new Apple Developer Program account as an organization, or request that your individual account be converted to an organization account by contacting Apple Developer Support.

When i upload builds to app store they given the feedback as We noticed that your app requests the user’s consent to access their camera, microphone, and location but does not clarify the use of this feature in the permission modal alert, But i haven't request any permissions to use user's content in my application. Actually i don't need it, so how can i prevent my application to request the user's consent to access their features?

Hello. I examine App Store ReviewGuidelines - https://developer.apple.com/app-store/review/guidelines/ and subdivision item 5.1.1 Data Collection and Storage, item (vii) says that: (vii) SafariViewController must be used to visibly present information to users; the controller may not be hidden or obscured by other views or layers. Additionally, an app may not use SafariViewController to track users without their knowledge and consent. This rule applies only to SafariViewCntroller or to WKWebView too? I ask this because both have the same technology and used for the same things. Regards, Ihor.

Hello Everyone I have uploaded an app to the app store which offers medical information to medical professionals, similar business models are live on the app store. but my app got rejected and this is the reason Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage We found in our review that your app does not meet all of our requirements for apps that offer highly regulated services or handle sensitive user data. Specifically: The account that submits the app must be enrolled in the Apple Developer Program as an organization, and not as an individual. The guideline 5.1.1(ix) requirements give App Store users confidence that apps operating in highly regulated fields or that require sensitive user information are qualified to provide these services and will responsibly manage their data. Like I said there are individual developers with live app that offer the same information, I have added my sources of information inside the app, and put 4-5 disclaimers in the app and in the descri

Hi, I am developing an application for an event that a client of mine is having. I received this comment from Apple: Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage : - The app must be published under a seller and company name that is associated with the organization or company providing the services. In this case, your app must be published under a seller name and company name that reflects the X client name. After sending the respective documentation that my client authorized me to publish the app I developed to my personal account, because they do not have an organizational account, since my client does not develop applications. What else do I need to prove that I am not in violation of this compliance.

My app was rejected because I use the word 'Enable' on a button, which triggers the system permissions request. I've attached below the the rejection reason, along with the screenshot they provided. I made an appeal for this rejection last week, but haven't heard anything since. So I thought I'd ask for opinions. My issue with the rejection is that not only can I not find any violation of Privacy guidelines, but the suggestion from the reviewer is worse and would be a confusing UX. My flow is a typical onboarding flow, describing features and asking for permissions up-front to ensure the app works properly from the start - something lots of apps do. Sure it could be improved but this is the first version & release. Does anyone have any thoughts on this issue, or even a better suggestion than the one the reviewer provided?