I have created an app using Firebase which reads username and allows it to create accounts.When i upload the app, Google play is asking me for privacy policy url. Is there a free and trusted way to generate privacy policy.As i work for myself,I cannot pay to generate privacy policy.Let me know if there is a free way?
Asked
Active
Viewed 9,165 times
2
-
1https://stackoverflow.com/a/38253123/4056108 – chirag90 Aug 17 '17 at 07:43
2 Answers
3
Allow me to offer different insights. In general app stores require the privacy policy when you process personal data in any way. User accounts are practically impossible without accessing at least the email address. So you would already be covered by the rules.
However, Firebase makes it very clear that a privacy policy is required when using their services. Let me quote from their various terms and requirements:
I agree that my use of any Firebase service is subject to the Google APIs Terms of Service (https://console.developers.google.com/tos?id=universal). I also agree that my use of any of the following services is subject to the applicable terms below.
--
What data are you requesting? You must provide clear and accurate information explaining the types of data being requested. In addition, if you plan to access or use a type of user data that was not originally disclosed in your privacy policy when a Google user initially authorized access, you must update your privacy policy and prompt the user to consent to any changes before you may access that data.
--
Be transparent about the data you access with clear and prominent privacy disclosures
You must publish a privacy policy that fully documents how your application interacts with user data.
--
and so forth and so forth. And there's more:
1) Usually advice regarding any of these problems is NOT complete without noting a few problems. Your solution may look a lot different depending just on where you are based, who you target and what your general situation looks like. I always suggest to look for your local data protection agency. There are some agencies linked here, if you don't know where to start.
2) I don't know any situation in which suggesting the Automattic privacy policy is a good idea. It has almost certainly nothing to do with your situation (you are providing an app based on Firebase technology, Automattic is an American entity providing blogging/open source software).
To summarise: familiarise yourself a little with what it means to provide a mobile app and what it means in regards to privacy. Maybe read a guide on that, like the one provided by the California AG (just keep in mind that they're writing from a US perspective).
If you go for free, then at least build on something coming from the various governmental data protection agencies.
Hope this helps.
p.s. and disclosure: I work on these topics every day at iubenda, just that currently our generator for mobile privacy policies doesn't work for free (which we are considering to change)
Simon
- 1,983
- 2
- 17
- 26
1
The Privacy Policy URL is mandatory if:
- Your app requests access to sensitive permissions or data
- Your app is for the Designed for Families program
All other apps do not generally require a Privacy Policy. You can read Google's requirements for having a Privacy Policy on this help page here:
https://support.google.com/googleplay/android-developer/answer/113469#privacy
As to generating a Privacy Policy, it's worth looking at the Privacy Policy of Automattic as they released their policy under a Creative Commons license which allows you to repurpose it for your needs:
TermsFeed
- 1,458
- 6
- 7
-
-
The policy from WordPress is free to adapt under Creative Commons license terms: https://creativecommons.org/licenses/by-sa/4.0/ – TermsFeed Aug 17 '17 at 15:13