Tuesday, October 30, 2012

Mobile app developers: Fill out privacy policy URL

United, Delta, and OpenTable got a note from California Attorney General warning them that they are violating The California Online Privacy Protection Act.  According to the COPPA, any online application that collects user's personal information must conspicuously display a privacy policy.  Without compliance to the COPPA companies can face $2,500 fine for every violation.

This got me wondering how United, Delta, and OpenTable violated the COPPA.  What exactly did United, Delta, and OpenTable do or not do?

DISCLAIMER: Before I share my findings, I want to disclose that I do not hold law degree, and I do not claim that recommendation that I'm about to give will satisfy the compliance to the COPPA.  Use my recommendation at your own risk of getting a letter from Kamala Harris.

Ok.  Now that I've gotten that disclaimer out of my way, let me share what I've found.

If you are running a social network service, you should know that the COPPA applies to your service because most social networking sites store user's personal information.  You need to have privacy policy available from your website.

What's interesting with Kamala Harris' warning to the companies is that she's now extending the COPPA to mobile applications.  That means mobile application users should be able to read privacy policy before they can download the application and start using it.  The key is before downloading and using the application.  The most natural place is on the application download page on App Store.

Most people don't bother scrolling to the bottom of App Store application page, but here's what you can see from Facebook, which is cited as the COPPA compliance mobile site.

Left is Facebook app page.
Right is what gets displayed following Privacy Policy link.
Source: Facebook app page on App Store
When you click on Privacy Policy link, it directs user to Facebook Data Use Policy page.

What about the other companies that are cited?

Let's look at United.

Following the Privacy Policy link leads to nowhere.
What has to hurt for United is that they have Privacy Policy page:
Source: United app page on App Store
Their app page does not link to Privacy Policy page.  It turns out that United already has Privacy Policy page.  It's just not linked from the app page.

What about OpenTable?  They literally missed the URL by a dot.

Ouch, that's gotta hurt.
Missing one dot and getting all the negative publicity.
Source: OpenTable app page on App Store
Moral of the story: Specify Privacy Policy URL when submitting the app to App Store and make sure you are linking it to the right URL and the link actually works.  It will help you avoid a call from California Attorney General's office.


  1. Business Mobile app enhances your business and services on mobile also. For the secure transaction and fast services, Mobile apps are very popular and used worldwide.
    Mobile app development companies

  2. I wanted to thank you for this great read!! I definitely enjoying every little bit of it I have you bookmarked to check out new stuff you post, Good luck!!!

  3. Website: www.mobiapphub.com/
    MobiAppHub iPhone iPad Games For Fun, Creative, Entertaining And Educational
    Read reviews, get customer ratings, see screenshots,
    and learn more about Greedy Dog on the App Store. Download Greedy Dog and enjoy it on your iPhone,
    iPad, and iPod touch
    Balls-Pyramid here & Download the app and enjoy it on your iPhone, iPad, and iPod touch.

    Also more details here