Apple is planning to implement stricter API rules to prevent iOS developers from collecting more user data than they need. The stricter API rules will require developers to justify why they need to use some API with required reasons in their app’s privacy manifest if they don’t want to see it being rejected by Apple.
“Apple is committed to protecting user privacy on our platforms. We know that there are a small set of APIs that can be misused to collect data about users’ devices through fingerprinting, which is prohibited by our Developer Program License Agreement,” the company explained on its developer portal yesterday (via 9to5Mac)
Sign up for our new free newsletter to get three time-saving tips each Friday — and get free copies of Paul Thurrott's Windows 11 and Windows 10 Field Guides (normally $9.99) as a special welcome gift!
"*" indicates required fields
For those unfamiliar, fingerprinting is a mobile identification technique that’s invisible to the user. It relies on IP addresses, operating systems, and other information about mobile devices that advertisers can use to serve targeted ads.
Apple first communicated these new API rules to developers at its WWDC conference last month. The company start to implement them later this fall, and this will be a two-step process:
Apple often likes to emphasize that its iPhones offer the best built-in privacy and security protections. If these stricter API rules sound look like they will better protect users, Apple also said that it may allow developers to use an API that isn’t already covered by an approved reason if it’s justified by a new use case that benefits users.