Add Privacy manifests file

Question

Add Privacy manifests file

Closed this issue 8 months ago · 11 comments

Hello Team,

I hope this message finds you well. I would like to draw your attention to an important update required by the App Store. Starting May 1, 2024, a privacy manifest will be mandatory for all apps. Given the ongoing development and support for your SDK, integrating this feature would be highly beneficial for ensuring compliance with the new App Store guidelines. This addition would greatly help developers like us in continuing to provide seamless services through our applications. We appreciate your attention to this matter and look forward to any updates you can provide.

Thank you for your continued support.

Answer 1 · 2024-03-25T14:10:48.000Z

Are you up for submitting a PR?

Answer 2 · 2024-03-28T07:58:43.000Z

@wtmoose Please check the PR: #547

Answer 3 · 2024-04-04T06:08:35.000Z

In the Apple forums, as indicated by a DTS engineer, it is recommended not adding an empty privacy manifest for no reason.

Answer 4 · 2024-04-04T11:48:43.000Z

Interesting. That seems like a bad design. There’s no way to distinguish between a library that doesn’t need a manifest from one that does, but hasn’t added one yet.🤦‍♂️

Answer 5 · 2024-04-15T08:41:23.000Z

@wtmoose do you intend to merge the above mentioned PR?

Answer 6 · 2024-04-15T13:35:12.000Z

@mobru no. Did you read through the comments? I don’t see any case for adding it

Answer 7 · 2024-04-15T13:39:20.000Z

@wtmoose I did, yeah. But looking a the proposed Privacy Manifest here, it looks like it would not be empty, and therefore required. Or am I misunderstanding something here (and sorry if so)?

Answer 8 · 2024-04-15T13:49:38.000Z

@mobru my fault. I assumed it was empty and didn't read the file. I don't know where @yasiraliraj came up with those items. I can't think of any reason why the SwiftMessages manifest would not be empty. I'll give @yasiraliraj a chance to justify the changes and then close the PR.

Answer 9 · 2024-04-25T15:12:20.000Z

@muruganandham I have no idea what “+1” means in the context of this conversation. Could you elaborate?

Answer 10 · 2024-04-25T20:03:25.000Z

FWIW this is the best explanation of the rules that we have found in the Apple documentation so far:

You need to include a privacy manifest file in your third-party SDK if it’s listed in “SDKs that require a privacy manifest and signature,” in Upcoming third-party SDK requirements.
Otherwise, include a privacy manifest file in your third-party SDK if it uses required reasons API, collects data about the person using apps that include the third-party SDK, enables the app to collect data about people using the app, or contacts tracking domains.

https://developer.apple.com/documentation/bundleresources/privacy_manifest_files

So sounds to me that if you don't use a required reasons API you don't need a manifest in the library.

Answer 11 · 2024-04-25T20:21:06.000Z

@jznadams! Yeah we don’t need one