Personal data is any kind of data that could identify an individual:
The FTC, in the US, requires all apps that collect and use personal information from users to properly inform about the collection and use of users' personal information.
The FTC has provided guidance for developers and businesses on what to be aware of to ensure compliance.
This requirement applies to all app stores, including iOS and Android:
Depending on your mobile app and your business, you may be subject to other legal requirements:
"Apple's App Store Review Guidelines" states that apps that collect user data must get consent for the collection.
The "Review Guidelines" is a summary version based on their "Program License Agreement (PLA)" and other legal documents that iOS developers must read and agree to in order to have their apps published on Apple App Store.
Based on these documents, iOS developers should consider the following:
You may be subject to more requirements related to user data if:
Even if your website is merely a placeholder website, where users can only read intros about your app, host the policy on your website and make the URL available to users who just happen to browse your website.
The most common way to do this is to place the URL in the footer of your website:
The same URL from the footer of your website is the URL you need to add when submitting your app to Apple App Store.
Here are some examples of popular iOS apps and how they integrated their Privacy Policies in the app.
Thir policy is available on their website as well:
It's also available on the Apple App Store profile page. The URL links directly to the same page as above:
Slack's legal pages has all the information for users to learn about Slack's privacy practices:
The same legal agreements are available on Dropbox's official website:
Booking.com's iOS app simply adds the links to its legal agreements (its Terms and Conditions page and its Privacy Statement page) at the "Information" screen in the app:
When a user taps on any of those links the Booking.com app force opens the mobile browser to open the legal agreement requested by the user.
The user can then choose to either go "Back to App Store" (added in iOS 9) or click on the "Get the App" button that's been added on the web page
This is how it looks:
This makes it easy for a user to learn how the personal information will be used by Pinterest before downloading the app. The "Get the App" button added to the legal page makes it easy for a user to download the mobile app once the contents of the policy are reviewed.
Another example is from the login and sign-up screens of Amazon's Kindle iOS app.
Kindle app can be downloaded from the App Store, but before the app can be opened and used (i.e. to read e-books) the user must register an account with Amazon.