FPF & CDT Release Best Practices for Mobile App Developers


Today, the Future of Privacy Forum and the Center for Democracy & Technology publicly released a beta version of their “Best Practices for Mobile Applications Developers.” We have been working on this guidance over the past year in consultation with stakeholders from industry and civil society, both in the United States and abroad. We hope that this document can serve as a primer for developers who are interested in preserving their customers’ privacy but who aren’t necessarily privacy experts themselves.

We started on this project because of heightened privacy issues in the mobile environment. Application developers can access a considerably broader range of information about users than traditional web developers. Last year, the Wall Street Journal reported that of the top 101 apps, most were transmitting personal information about users, such as unique device identifiers, age, gender, and precise geo-location information to third parties. Research from the Future of Privacy Forum has shown that even in the most popular applications, less than half have privacy policies detailing what they do with customer data.

The best practices are based on long-established privacy principles that we believe should apply to everyone who collects and processes individual information, not just mobile developers. Among the recommendations that we make to developers are:

[list class=”bullet-3″][li]Be completely transparent about how you are using or transmitting customer data[/li][/list]

[list class=”bullet-4″][li]Don’t access more data than you need, and get rid of old data[/li][/list]

[list class=”bullet-3″][li]Give your customers control over uses that users might not expect[/li][/list]

[list class=”bullet-4″][li]Use reasonable and up-to-date security protocols to safeguard data[/li][/list]

[list class=”bullet-3″][li]As the app developer, you need to be responsible for thinking about privacy, and taking privacy into consideration during the various stages of your app life cycle[/li][/list]


This is not a final pronouncement on our view as to what app developer best practices are.  We’re soliciting public comment on this draft — if you have feedback, please send your thoughts to [email protected]


Also, check out the survey we released yesterday finding that Free Mobile Apps are Better than Paid on Privacy Policies.

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>