Ensuring Privacy and Trust: How TrustDecision Complies with App Store Policies


November 28, 2023

15 minutes

Ke Qiang & Elaine

In an era where digital security is paramount, TrustDecision stands as a beacon of commitment to user privacy and app store compliance. With a dynamic mobile application market constantly evolving, our developers balance innovation with strict adherence to the rules set by giants like Apple’s App Store and Google Play. This balance is not merely a legal necessity; it’s a cornerstone of maintaining long-term trust and presence in the market


Navigating the App Store Landscape

App removal is a daunting challenge that can stall progress and damage reputations. It’s often the result of policy violations, including fraud, copyright infringement and malware. That’s why we prioritize a deep understanding and meticulous compliance with app store policies. Through regular self-checks and adjustments, we proactively mitigate the risk of app removal, ensuring a smooth, uninterrupted service for our users.


Recent Overview of Financial Services Policies

Whenever Google releases a new version of its developer policy, developers of existing apps typically have at least 30 days (sometimes longer) to make all necessary adjustments. After this grace period, if developers violate any Google Play Store policy, their apps may be removed or suspended from the Google Play Store. Developers are informed of such actions via email. 

Repeated or severe violations of these policies, such as the presence of malware, fraudulent activities, or actions that could harm users or their devices, can lead to more serious consequences. This includes closing the developer's personal account (and all associated accounts) as per the Developer Distribution Agreement (DDA).

Google released this policy announcement on 25th October 2023 to ensure generative AI apps are safe for users, and introducing more privacy preserving experience for users. On top of that, it has also updated personal loan policy, financial service policy and user generated content policy.

TrustDecision’s Update to Google’s Latest Policies

October 25, 2023

-   In compliance with the "Personal Loans" policy, a wider variety of proof documents can now be accepted when assessing personal loan apps operating in Thailand, ensuring they comply with local regulations.

-   Clarifications are made in our financial services policy, emphasizing that personal loan apps must not access sensitive permissions and must adhere to our permissions policy.


July 12, 2023

-   For the safety of Google Play users, we’ve complied with the "Financial Services" policy to mandate apps involving financial products and services submit a financial product and service declaration form, along with supplementary information and documents.

-   New requirements will be added to the "Personal Loans" policy, clarifying that personal loan apps operating in Thailand must provide relevant documentation proving their capability to offer or assist in offering personal loans in the country.


June 29, 2023

-   Machine Learning Detection: We employ machine learning technologies to scan for policy-violating behaviours in apps, helping us identify harmful apps on a large scale, thus making Google Play a trusted platform for everyone.

-   Manual Review: Our team of human reviewers will manually check apps for policy violations to ensure that decisions made are accurate and error-free.

-   App Removal: Apps that violate policies will be removed, preventing the publication of harmful apps, and thereby increasing user trust in the apps they download (such as yours).


April 5, 2023

-   We have updated our app to comply with the "Personal Loans" policy to clarify that apps designed to offer or assist in offering personal loans are prohibited from accessing users' contact lists or photos.



TrustDecision’s Approach to Compliance

Our SDK (Software Development Kit) is designed with user privacy at its core. It neither collects nor relies on personal information without explicit user consent, aligning perfectly with the stringent policies of Apple’s App Store and Google Play. This commitment has led to zero instances of host apps being removed due to our integration. 

We focus on configurable permissions management, making data collection granular, convenient, and risk-averse. From privacy policy declarations to data collection, transmission, encryption, and usage, our processes are in complete harmony with regulatory policies.


Beyond Traditional Identity Elements

Our products go beyond conventional identity verification, providing robust support for risk identification. We are acutely aware of the potential risks, such as collecting biometric information, which could trigger security policies under matrix business models. Our commitment is to product compliance, allowing users to utilize our solution without the fear of app removal confidently.


Key Strategies for App Developers

Risk Management

Avoid overreliance on personally identifiable information (PII) from devices. Strengthen anti-fraud technology and manage PII collection comprehensively.

Account Isolation

Ensure isolation of developer accounts and environments, including IP addresses, devices, and payment accounts.

Sensitive Permissions Policy Analysis

The current financial services-related permissions policies are as follows:

Information such as precise location, installed app lists, contact lists, and phone numbers are all within the scope of data access that is prohibited. 

SMS and Call Log Permissions

With few exceptions, an app can only access call logs and SMS records if it has been selected by the user as the default app for making calls or sending texts. 

Access to Installed App Lists

The latest policy explicitly prohibits accessing lists of installed applications. 


Access to Precise Location Permissions

Beyond the explicit requirements of the ”Financial Services“ policy, there are clear constraints in the [Sensitive Information Access Permissions and APIs] section that prohibit the acquisition of [ACCESS_FINE_LOCATION] permissions.


Staying Ahead in the Competitive Market

In this competitive market, continuous learning and adherence to app store policies are not just best practices but commitments to our users and our business. By learning from experiences and optimizing our apps, we adapt to market shifts, ensuring long-term health and growth.


Conclusion: A Promise of Security and Compliance

We are committed to your digital safety and the compliance of our products with app store policies. Our proactive approach to ensuring that all our offerings align with the latest regulations is a testament to our dedication

Related Posts

Let’s chat!

Let us get to know your business needs, and answer any questions you may have about us. Then, we’ll help you find a solution that suits you