When I upload the build to app store connect, I encounter the problem of Missing Compliance.
If the app uploaded itself doesn't use any encryption algorithms, but only uses the API (from the development server) which using standard JWT HS256 token secret and CBC encrypting algorithm for login, session refresh and other authentication purposes. In such case:
Question 1: I need to click yes or no in here?
Question 2: If I need to click 'yes' in question 1, do the case satisfy the category c: Limited to authentication, digital signature, or the decryption of data or files?
Question 3: Do I need to submit additional report to Apple?
Thanks.