Hi everyone,
I work on a third-party SDK and am creating the privacy manifest and seek advice on how to fill out the "Describing data use in privacy manifests" section.
-
NSPrivacyCollectedDataTypeLinked:Whether a data type is linked to user identity depends on how the SDK consumer is using it. The SDK supports identified users so data would be linked, but it also allows the use case for all users to be completely anonymous. -
NSPrivacyCollectedDataTypePurposes:For each data type, the reasons we collect the data also depends on how the SDK consumer is using it. For example, we collect product interaction, and this data could be used by SDK consumers for analytics or advertising or some other reason. -
The SDK has the ability to collect additional data, for example, emails and phone numbers, but only if the SDK consumer chooses to share this data. I assume we do not need to include this type of data in the privacy manifest since many SDK consumers will not be using this feature?