The Office of the Australian Information Commissioner (OAIC) has announced the results of its review of 53 popular free iOS apps, with a focus on apps produced by or on behalf of Australian businesses and Australian Government agencies.
It examined the types of permissions apps were seeking, whether those permissions exceeded what would be expected based on the apps’ functionality, and how the apps explained to consumers why they wanted the personal information and what they planned to do with it.
The review identified a number of concerns that businesses, government agencies and app developers should take note of to improve their privacy performance:
- almost 70% of the apps looked at failed to provide the user with a privacy policy or terms and conditions that addressed privacy prior to the app being downloaded
- almost 25% of the apps examined did not appear to have privacy communications that were tailored for a small screen
- in 11.3% of the apps, reviewers expressed concern about the nature of the permissions being sought. Reviewers felt the apps requested access to information that exceeded their functionality.
-
The OAIC’s Mobile privacy: a better practice guide for mobile app developers recommends that developers use short form notices for privacy policies that are no longer than a single screen if possible, and draw users attention particularly to any collection, use or disclosure of information that they would not otherwise reasonably expect.