New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Adhere to Apple's Data Collection / App Privacy details #1187
Comments
Wow, totally read this earlier this year but also totally forgot about it again! Thanks for bringing it up! I think we're in a tricky spot here. While I agree, that we don't collect anything ourselves right now, we're shipping a framework that allows to track basically all of it. |
Thanks for letting us know this.
So I agree with the above. |
@ffried Great point of view for how we might be collecting data, which I never thought about. Let's discuss further. Apple's definition is the following:
Based off that, I think even if we pass that data through the Also, I would like to mention any custom loggers built on top of I like the idea of having our docs explicit about what we collect (nothing) and what they could collect. |
It's not as trivial on iOS either. In basically all of our apps, we're using a
Yes of course, custom loggers also fall into this category. Like I said, we provide a framework that in theory allows to track data in all of the listed categories.
I'm totally fine with the list you compiled! Thanks again for putting it together! I think we should have another list or at least a template statement for what fits most applications that log some data e.g. to files (or with custom loggers to anywhere). This way, it's very easy for users of CocoaLumberjack to just copy that statement (as long as they do not log anything that isn't covered by that statement). If the statement is well thought-through, this also provides a consistency between apps using CocoaLumberjack. |
Hi guys, I'm analysing Apple Privacy Details myself, not in context of CocoaLumberJack, and thought that maybe you could take advantage of optional-disclosure? |
additional-guidance section, "Your app includes free-form text fields..." may be also interesting to you. |
@piobyz Thanks for those links! However, I think these don't apply to CocoaLumberjack, since we're an SDK not an app. It all heavily depends on how our SDK is used. If you build an app and only ever log one "Hello, World" message, you're tracking nothing. If you log a user model object, you might be tracking a whole lot more. |
@ffried I agree, we can be helpful to the app developers that use our framework. |
I also think this is a good example that is easy for people to understand😉 |
* Updated the README.md by adding a Data Collection Practices section - for #1187
I just merged #1191. Before closing this issue, I just want to regenerate our doc (github.io) so it includes the updates from |
The doc on github.io is up to date now, closing this issue. |
New Issue Checklist
Issue Info
Apple's Data Collection / App Privacy details
Apple is changing the submission process by requiring app developers to describe their data collection and privacy practices in App Store Connect.
For this process to run smoothly, they have asked SDK developers to provide the same details so that app developers can compile a list from all their dependencies and their explicit ones.
See details:
Todo
What's required of us at this point is to gather that data and make it available on our documentation.
Prototype
I have started working on a prototype which I added as static web pages to our github.io docs:
https://cocoalumberjack.github.io/DataCollection/index.html.
At my first review round, I couldn't find any private data we are collecting from the users, but I may have missed something.
@CocoaLumberjack/collaborators please go through this list https://cocoalumberjack.github.io/DataCollection/index.html and let's discuss if there is any data there that you think we may be collecting in some place of our SDK.
The text was updated successfully, but these errors were encountered: