Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

New guideline 5.1.1 (x)

The following guideline was recently added:


"Apps may request basic contact information (such as name and email address) so long as the request is optional for the user, features and services are not conditional on providing the information, and it complies with all other provisions of these guidelines, including limitations on collecting information from kids."


Sounds to me like Apple is saying that you can no longer force users to sign in to use your app. Does anyone know how this guideline should actually be interpreted?


The company I work for has updated a bunch of apps since the introduction of this guideline, all of which passed the review and they all require users to log in. Yet, this doesn't comfort me. I feel like any of our apps can be rejected at some point as Apple reviewers seem to interpret their own guidelines differently at times.


Thanks for any responses in advance.

Posted on Oct 26, 2021 12:22 AM

Reply

Similar questions

2 replies
Sort By: 

Oct 26, 2021 8:03 AM in response to Stifleritos

Stifleritos wrote:

Sounds to me like Apple is saying that you can no longer force users to sign in to use your app. Does anyone know how this guideline should actually be interpreted?

You are thinking about it completely backwards. Lawsuits have forced Apple to allow more scam apps in the store. This change allows more apps to ask for your personal information.


This has nothing to do with apps that require users to sign in. It doesn't sound like this would have any impact on your company. First of all, you have a company. Secondly, you have to maintain a database of users. That is relatively expensive and probably wouldn't be used for malicious purposes.


The idea behind this (now defunct) rule is (was) to prevent truly malicious apps from asking for people's personal information, like e-mail, phone numbers, names, addresses, credit card numbers, health card numbers, photographs, the works, and then using that information to stalk, harass, and scam. The courts have ruled in favour of the scammers to allow this activity in the App Store. Technically speaking, if Apple finds any malicious activity, they can still take action and ban the app and developer. But malicious developers have already found it easy to evade Apple's scam-detection efforts.


This isn't even a question about Apple reviewers. When Apple reviews an app, any app, they will all be perfectly reasonable. It is only after they are published that malicious apps change their behaviour. Then, the work passes on to Apple's post-review scam-detection efforts, which are considerably less effective than App Review. So you could conceivably have more trouble at App Review time. App Review is never easy, for a variety of reasons. Just be transparent and remember that Apple will be facing an even bigger onslaught of fraudulent apps in the future. All legitimate developers will suffer. It is a great time to be a scammer, eh?

Reply

Oct 30, 2021 5:12 AM in response to Stifleritos

I have a similar concern, you don't explicitly say so but are you referring to the use of an email address as part of a users credentials when logging in?


This is my concern. There are plenty of apps on the store that require a user account to function, and typically the user name for a user account is an email address. For these apps the request of the email address is not optional if you want to access functions of the app.


It looks to me like a reviewer could reject an app that uses an email address & password to sign up a user. In that case the contact information (email address) is required to access the features of the app, which is against the new rule here.

Reply

New guideline 5.1.1 (x)

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.