Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Protection

Android App Developers Required by Google to Share More Info on Data Handling

Google this week announced that it is introducing a new policy for the Google Play app store, requiring all developers to provide information on their data collection practices.

Google this week announced that it is introducing a new policy for the Google Play app store, requiring all developers to provide information on their data collection practices.

Planned as a safety section in Google Play, the change is expected to “help people understand the data an app collects or shares, if that data is secured, and additional details that impact privacy and security.”

Google is already asking developers to say whether their application is collecting user data, but the new requirement will have them provide further information on the matter, for increased transparency.

This includes specific details on the data that is collected, such as personal details (names, emails, and addresses), location, contacts, media files, and other files; information on how that data is stored; and details on how the data is used (such as app functionality and personalization).

“Similar to app details like screenshots and descriptions, developers are responsible for the information disclosed in their section. Google Play will introduce a policy that requires developers to provide accurate information,” the Internet giant explains.

The company also notes that, should a developer be in violation of the policy, they will be required to address the issue.

To provide users with increased transparency, Google will also share information such as whether an app has security practices, if it follows the Families policy, if the data is required for the app to function, whether an independent third-party has verified the app’s safety section, and if users can require data deletion when uninstalling an app.

The new policy will apply to all applications available on Google Play, including those that come from Google themselves.

Advertisement. Scroll to continue reading.

Google says developers will be provided with further information on the new policy requirements and resources over the summer, as well as with guidance on app privacy policies. All app submissions and updates will be required to adhere to the new policy starting Q2 2022.

Related: Fake Netflix App Luring Android Users to Malware

Related: Joker Android Trojan Lands in Huawei AppGallery App Store

Related: Researcher Demonstrates Android App Hacking via Intents

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Former DoD CISO Jack Wilmer has been named CEO of defensive and offensive cyber solutions provider SIXGEN.

Certificate lifecycle management firm Sectigo has hired Jason Scott as its CISO.

The State of Vermont has appointed John Toney as the state’s new CISO.

More People On The Move

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Data Protection

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.

Artificial Intelligence

The CRYSTALS-Kyber public-key encryption and key encapsulation mechanism recommended by NIST for post-quantum cryptography has been broken using AI combined with side channel attacks.

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Data Protection

While quantum-based attacks are still in the future, organizations must think about how to defend data in transit when encryption no longer works.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...