For app makers, privacy policies are nothing new, as federal regulators have been requiring them for a while. But individual states also regulate Internet privacy by making regulations about where and how developers should post their privacy policies so consumers can be informed.
Now California is going one step further by enforcing its privacy-policy regulations. So it's time to make sure you're following the rules.
Under California law, companies that build mobile applications for smartphones and tablets must conspicuously display their privacy policies.
The regulation also dictates what the policy should contain. At a minimum it must have information on:
- How user data is collected,
- What collected user data is used for, and
- Where that data goes.
These regulations went into effect in 2004, and they affect any company with customers in California, according to the San Francisco Chronicle.
While state laws generally only affect state residents, in this case the law empowers California to penalize out-of-state companies that deal with California customers.
The rule is designed to protect California residents, which it does by giving them more information about their online privacy. Companies that do business in California implicitly agree to abide by California law.
That applies anytime your company does business in another state. If you're not sure that you're complying with rules in the states where your company does business, talk to an experienced business lawyer about what you can do to protect yourself.
- California Targets Mobile Apps For Missing Privacy Policies (Information Week)
- Subscription Business Model May Impact Customer Privacy (FindLaw's Free Enterprise)
- How to Keep Web Businesses Out of COPPA Trouble (FindLaw's Free Enterprise)