When publishing an Android App on the Google Play Developer Console, you should specify a URL to the privacy statement (leftmost on "All Apps" -> "Store Entry" -> relatively far down "Privacy Statement"), but if you don't have your own website, do you really have to create one?
My app doesn't record any data, the user doesn't have to log in at all or similar.
Has anyone have any experiences, maybe anyone of you have even published their own app?
Thanks in advance
L.
No, not a must. You can follow an alternative method to publish your privacy policy as mentioned below.
Use Firebase Privacy Policy Generator to create a privacy policy for your app.
Then you can download the generated privacy policy or copy contents in it and paste them in a Google doc. Publish the Google Doc.(You can find the option in File menu). When it is published, you will get a link/url for the Document so that any one who has the link/url can access the document.
Now, you can provide the above link/url in the Play Console when the privacy policy statement is required.
I am developing an android app that stores highscores locally and via google play services. I am also integrating Google AdMob into my app. My question is, what is the easiest way to add a privacy policy when signing into google play services when first opening the app and on the homepage when downloading the app?
Thank you for your time in advanced.
You can either:
Create an HTML page and link to it. This might be required since you'll need a Privacy Policy URL to submit on Google Play Store.
Embed the Privacy Policy in your app in a view.
You have plenty of options where to show the policy in your app:
On your app profile page from Google Play Store:
To do so:
Log into your Google Play Developer Console.
Select All Applications
Select the application
Click Store Listing
Enter the public URL of your Privacy Policy at the Privacy Policy field:
On your app login/welcome screen.
Example from Waze app:
In your app's Settings/Help menu:
Example from eBay:
Maybe put the privacy policy in a HTML page on your server and then link to it on the PlayStore store listing page. And also open it in a WebView inside your app.
Google Play has notified me to publish a Privacy Policy for my app. I have created a website to host this information. I am planning to update the website link from the developer console shortly.
As per the new policy, Google is asking that we should also update our app to have a link to the privacy policy. Unfortunately I cannot do this anymore as I lost my keystore in a hard-disk crash. Is this step optional? Will Google Play allow my app to be listed with just a privacy policy website link in the Store listing, without the app itself not having the privacy policy details?
Thanks
Balaji
1) You absolutely need your privacy policy on the Play Store page PLUS within the app
This is what Google says:
If your app requests user data or makes sensitive permissions requests
such as Phone, Accounts, Contacts, Camera, or Microphone, you'll need
to add a valid privacy policy in two places: your app's Store Listing
page (instructions below) and within your app.
I'd also like to add some more insight why that is the case. If you are into privacy law theory, then I suggest you read this pdf by a Pan-European privacy body, otherwise I just suggest to read the summary here:
The essential scope of information about data processing 1) must be
available to the users before app installation, via the app store.
Secondly, the relevant information about the data processing 2) must
also be accessible from within the app, after installation.
You can see - in theory - this is absolutely requested and required and you should strive to get that done. Hope this helps. p.s. I work for a startup that helps with privacy policies. (link)
I am having trouble here, this is my first app and there is so much involved, I did not think it was this hard, currently I am stuck on adding a link to my app's PRIVACY POLICY my app is very simple.
It does not share any data but I do use Google Analytics, one more thing is that I do not have a website, so supposedly I had the privacy policy link where would I put it apart from a site I own?
Thanks.
website hosting
checkout GitHub's GitHub Pages services. they host a simple static website for you for free! basic instructions:
create a public repository on GitHub named [username].github.io (replace "[username]")
commit an index.html file to the root of the repo.
you can see your site online at http://[username].github.io/.
privacy policy
basic privacy policy template here....it'll give you a template that you can simply copy and paste and modify to fit your needs. unlike most other places that are after your money and/or personal information!!! 😠😠ðŸ˜
This is
a simple guide from google itself. you can host your site in google sites no need to host github sites
Simplest steps to resolve Google Play Console privacy policy link issue:
Create your own app privacy policy.
After created, hosted in any website hosting (In my case, I hosted in GitHub Pages) and copy the privacy policy url.
Pasted the privacy policy url in the Google Play Console Privacy Policy section.
Save and wait for review.
Done!
You might not need one. You could inform the user in-app that you're using Analytics. Otherwise, you can check out free sites like Google Sites to easily create a web-page with its own URL that you can link to.
My app doesn't share or collect any data, but I need to complete data safety form and part of it is a link to privacy policy.
Privacy Policies are very important legal agreements. Make absolutely sure you are not using any 3rd party solutions that might be tracking your users unwittingly. Adding analytics or user login to your app usually requires a more comprehensive privacy policy.
If your app really doesn't collect data remotely or use third party services that do, then that makes your privacy policy very simple. In that case, I suggest stating the following:
Your app doesn't track users
Your app doesn't collect data; or that data is stored securely on the user's device and stays private
Data is not shared with your company or any third parties without permission (since you might want to collect user feedback like bug reports with the user's explicit permission)
You can easily write your own privacy policy, but here's a minimal template for the bullet points above:
app_name_or_legal_entity's commitment to privacy is simple: We don't track you! We don't collect or transmit your data; instead, information you submit in our app is stored privately and securely on your device. Your information won't ever be shared with us or any third party without your explicit permission.
Keep in mind that this is subjective, but I suggest keeping it short and adding a section where you explain why your business doesn't collect user data. It could be as simple as stating something like "We believe privacy is a human right."
I had massive problems with my privacy policy getting rejected, no matter what I wrote in it. But in the end it turned out that there was nothing wrong with the actual contents of my policy, the problem was instead that I hosted it on my web page using a client-rendered Vue application. I guess that this prevented Google's system from properly crawling the URL that I supplied to them. When pasted the same privacy policy in a Google Docs and used the "Publish to Web" option in order to get a URL, it got approved right away.
A pity that the error message wasn't more clear on that.
There are many reasons why you'd want a privacy policy, one is the fact that you are using Google Analytics. Here is what the Google Analytics terms of use say under "7. Privacy":
You will have and abide by an appropriate Privacy Policy and will
comply with all applicable laws, policies, and regulations relating to
the collection of information from Visitors. You must post a Privacy
Policy and that Privacy Policy must provide notice of Your use of
cookies that are used to collect data. You must disclose the use of
Google Analytics, and how it collects and processes data. (...)
Sure, you can trick your way around the requirement, but that doesn't mean the problem goes away. You can find a lot of information around the web about how to write a privacy policy for apps and more, the advice I'd give depends on a lot of factors.
How to get your privacy policy done:
Proper disclosure to start this section: I work at iubenda where we create solutions for problems like yours, our software generates privacy policies based on user input.
I've posted about privacy policies for the Play Store on iubenda's company blog a while ago, this might help you out and give you the right ideas.
iubenda also helps with your problem of not having a site, the privacy policy is generated and hosted on our site, you can just copy-paste the link into the app and the app store.
You might be able to click the "Not submitting a privacy policy URL at this time" check box at the "Store Listing" page:
Screenshot from Google Play Store Store Listing page
But even if you don't collect personal data, you're still required by Google Analytics Terms of Service to have the Privacy Policy agreement:
Screenshot from Google Analytics Terms of Service
However, it's important to keep in mind that if you use third party tools like Google Analytics you may also be required by those parties to have the Privacy Policy.
But Google Play Store requires you to have the policy before the app is public. Here's a quote from the Google Play Developer Distribution Agreement:
You agree that if you use the Store to distribute Products, you will
protect the privacy and legal rights of users. If the users provide
you with, or your Product accesses or uses, user names, passwords, or
other login information or personal information, you must make the
users aware that the information will be available to your Product,
and you must provide a legally adequate privacy notice and protection
for those users.
There are many websites to make a privacy policy like this and this. You can create the privacy policy there and then copy the text. Then, you can host a file on GitHub and then set this text in the file
I am using AdMob in my android application. Do i need to create a Privacy Policy in my application to inform users about cookies that Google uses?
If yes where do i need to put it?
Do i must write it in descriptions on Google Play? Or on fist run do I must show a fragment window? Or can I write the Privacy Policy just in section "About App"?
What do I write?
I read the Google Documents, but i didn't understand clearly.
https://support.google.com/googleplay/android-developer/answer/2519872?hl=en
To clarify for anyone who is finding this question:
The answer is yes, you need a privacy policy for your app if you are using AdMob. Refer to: AdMob Help (bottom of the page).
... Additionally, your app's privacy policy may need to be updated to reflect the use of personalized advertising (formerly known as interest-based advertising) served via the Google Mobile Ads SDK. Please take a moment to review your app's privacy policies and ensure that they are up-to-date. Because publisher pages and laws vary across countries, we're unable to suggest specific privacy policy language...
They essentially want you to inform users about the use of targeted advertising. They don't explicitly tell you what to write though.
Personally I think it should be enough to write something about that you use AdMob to serve ads and that AdMob uses the devices advertising id to serve personalized ads based on the users interests (which includes collecting and analyzing user data). A link to the Google page to opt-out of personalized advertising and to Googles Privacy Policies (here and here) can't hurt.
This also suggests that you need to have at least a link to your privacy policy in your app and on the store page. But maybe AdMob doesn't count as handling sensitive data, so maybe the link to the policy on the store page is optional in this case.
As a side note: If you use any Google Services (e.g. Location, Firebase, Places Api) you probably need a privacy policy
Things changed in 2017 (even without AdMob):
AdMob is another subject: I talk about any app event without AdMob (my case for example)
Google threatens to remove my open source app JSAir just for http://android.permission.READ _PHONE_STATE (for UX: I need to check connection is active or not = that's all).
I had the surprise of receiving a mail from Google who wants me to create a privacy policy website now (I did not have before).
I will have to say something like:
This application stores/send/read nothing apart javascript air website information!!! So there is no better privacy conscious application.
I made a public gist and posted the url here is the gist
you can check here
play store