Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE]: Add required Privacy Manifest file for iOS #338

Open
edshkliaruk opened this issue Feb 16, 2024 · 14 comments
Open

[FEATURE]: Add required Privacy Manifest file for iOS #338

edshkliaruk opened this issue Feb 16, 2024 · 14 comments

Comments

@edshkliaruk
Copy link

Description

Starting with Spring 2024 Apple requires third-party SDKs to add a Privacy Manifest file (similar to the privacy nutrition labels in the store). Apple specifically lists Capacitor as one of the SDKs that must include this manifest otherwise any App that includes it is not allowed to release an update (or new app) to the store.

https://developer.apple.com/support/third-party-SDK-requirements/

Platform(s)

iOS

Additional Context
https://developer.apple.com/documentation/bundleresources/privacy_manifest_files/describing_data_use_in_privacy_manifests
https://developer.apple.com/videos/play/wwdc2023/10060/
@edshkliaruk edshkliaruk changed the title [FEATURE]: Add required Privacy Manifest file for iOS [FEATURE]: Add required Privacy Manifest file for iOS Feb 16, 2024
@reslear
Copy link
Collaborator

reslear commented Feb 19, 2024

PR welcome

@SamX23
Copy link

SamX23 commented Aug 27, 2024

I've received an email after I released an update with this plugin

  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMAppAuth.framework/GTMAppAuth”, which includes GTMAppAuth, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.

  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMSessionFetcher.framework/GTMSessionFetcher”, which includes GTMSessionFetcher, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.

  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GoogleSignIn.framework/GoogleSignIn”, which includes GoogleSignIn, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.

Not sure if I try to add this on my side will fix it or not, but maybe if anyone could add this to the library, would be really helpful.

Thanks

@NoCoID
Copy link

NoCoID commented Aug 29, 2024

We have received the same email regarding this problem.

@reslear
Copy link
Collaborator

reslear commented Aug 29, 2024

ok, i found similar solution react-native-google-signin/google-signin#1265 Can someone do it like that?

@pw-repo
Copy link

pw-repo commented Sep 2, 2024

I've received an email after I released an update with this plugin

  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMAppAuth.framework/GTMAppAuth”, which includes GTMAppAuth, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.
  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMSessionFetcher.framework/GTMSessionFetcher”, which includes GTMSessionFetcher, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.
  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GoogleSignIn.framework/GoogleSignIn”, which includes GoogleSignIn, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.

Not sure if I try to add this on my side will fix it or not, but maybe if anyone could add this to the library, would be really helpful.

Thanks

Hello. Are these messages only warnings and Apple passes through the review app or you received a reject? Because based on the information, seems we can release GoogleSignIn without privacy manifest file till 12 November 2024.

@SamX23
Copy link

SamX23 commented Sep 5, 2024

I've received an email after I released an update with this plugin

  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMAppAuth.framework/GTMAppAuth”, which includes GTMAppAuth, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.
  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMSessionFetcher.framework/GTMSessionFetcher”, which includes GTMSessionFetcher, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.
  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GoogleSignIn.framework/GoogleSignIn”, which includes GoogleSignIn, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.

Not sure if I try to add this on my side will fix it or not, but maybe if anyone could add this to the library, would be really helpful.
Thanks

Hello. Are these messages only warnings and Apple passes through the review app or you received a reject? Because based on the information, seems we can release GoogleSignIn without privacy manifest file till 12 November 2024.

@pw-repo
Its only a warning, every time I released new update, they will send this email and approve our updates.

@rostislavcz
Copy link

I've received an email after I released an update with this plugin

  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMAppAuth.framework/GTMAppAuth”, which includes GTMAppAuth, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.
  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GTMSessionFetcher.framework/GTMSessionFetcher”, which includes GTMSessionFetcher, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.
  • ITMS-91061: Missing privacy manifest - Your app includes “Frameworks/GoogleSignIn.framework/GoogleSignIn”, which includes GoogleSignIn, an SDK that was identified in the documentation as a privacy-impacting third-party SDK. Starting November 12, 2024, if a new app includes a privacy-impacting SDK, or an app update adds a new privacy-impacting SDK, the SDK must include a privacy manifest file. Please contact the provider of the SDK that includes this file to get an updated SDK version with a privacy manifest. For more details about this policy, including a list of SDKs that are required to include signatures and manifests, visit: https://developer.apple.com/support/third-party-SDK-requirements.

Not sure if I try to add this on my side will fix it or not, but maybe if anyone could add this to the library, would be really helpful.
Thanks

Hello. Are these messages only warnings and Apple passes through the review app or you received a reject? Because based on the information, seems we can release GoogleSignIn without privacy manifest file till 12 November 2024.

@pw-repo Its only a warning, every time I released new update, they will send this email and approve our updates.

Yea, but after november apple wont accept new builds anymore, what then? :D

@papiitodev
Copy link

Any updates on addressing the privacy manifest requirements for Apple's new rules? November is close, and we need to ensure compliance.

@raffyPhotoup
Copy link

Is there any update on this? Just received this email when I pushed and update to our app.

@Saqib92
Copy link

Saqib92 commented Sep 20, 2024

Any update on this, received same email from Apple today.

@pw-repo
Copy link

pw-repo commented Sep 20, 2024

@Saqib92 @raffyPhotoup Were you able to upload update? I mean, did Apple approve your app even with this email/warning? I am going to upload new app too, and don't have a privacy manifest file. Is it still actual information, that we can upload apps without privacy manifest till November 12?

@Saqib92
Copy link

Saqib92 commented Sep 20, 2024

@Saqib92 @raffyPhotoup Were you able to upload update? I mean, did Apple approve your app even with this email/warning? I am going to upload new app too, and don't have a privacy manifest file. Is it still actual information, that we can upload apps without privacy manifest till November 12?

I uploaded my new app today. and received this warning in email. but appsotreconnect showing my app waiting for review. so i guess its is a warning for now.

@pw-repo
Copy link

pw-repo commented Sep 20, 2024

@Saqib92 Yes, it seems to be only warning as they already set status "Waiting for review".

@raffyPhotoup
Copy link

@Saqib92 @raffyPhotoup Were you able to upload update? I mean, did Apple approve your app even with this email/warning? I am going to upload new app too, and don't have a privacy manifest file. Is it still actual information, that we can upload apps without privacy manifest till November 12?

Yep this is only a warning for now but November is fast approaching.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
9 participants
@papiitodev @Saqib92 @reslear @SamX23 @rostislavcz @raffyPhotoup @pw-repo @NoCoID @edshkliaruk