New “Data Safety” Section to be added to Google Play Store
On Tuesday, April 26, Google started to roll out a new “Data safety” section for Android apps on the Play Store to highlight the type of data being collected and shared with third-parties.
“Users want to know for what purpose their data is being collected and whether the developer is sharing user data with third parties,” said Suzanne Frey, Vice President of product for Android Security and Privacy. “In addition, users want to understand how app developers are securing user data after an app is downloaded.”
The measure, which is similar to Apple’s “Privacy Nutrition Labels”, was first announced in May 2021.
The data safety section, which will show up against every app listing on the digital storefront, will show a view of what data is being collected, for what purpose it’s being used, and how it’s handled. It will also highlight what data is being shared with third-parties.
Additionally, it will show an “app’s security practices, like encryption of data in transit and whether users can ask for data to be deleted,” Frey noted. It will also validate those practices against security standards such as the Mobile Application Security Verification Standard (MASVS).
This new security feature gradually will be made available to all users. App developers have a deadline of July 20, 2022 to complete this section and keep them updated should they change the apps’ functionality or data handling methods.
Google has said in the past that they intend to institute a mechanism that requires developers to furnish accurate information, and that it will mandate them to fix misrepresentations should policy violations occur.
Google has stated that its app review process is not designed to certify the accuracy and completeness of the data safety declarations that are provided by third-party developers, but it’s outlining strong measures to handle such transgressions.
Google is also warning that it will take appropriate measures when it identifies a violation with the information provided section. An app developer who fails to comply with these measures are subject to blocked updates, or even removal from Google Play.
“When Google becomes aware of a discrepancy between your app behavior and your declaration, we may take appropriate action, including enforcement action,” Google said in an updated support article.
Story via The Hacker News