Android Question How to you answer data safety questions when using ads

[mcqueccu]

All applications are to declare how data is collected or shared as the new play store policy requires, and will later be shown in the play store for users when downloading your applications.

But the question is sometimes, you are only using Ads in your application and the data safety column suggests you choose you collect data which is Device IDs.
Under this, you are asked some questions like the ones in the screenshot. How do you answer the 2 and 3?
1. Does data collected ads company (firebaseadmob) encrypted in transit?
2. Do they have a pray for users to request their data to be deleted?

 

[MicroDrie]

The background to the three questions is whether or not your app collects or shares user data with other companies or organizations. The simplest is if you do not collect information that can be traced back to a natural and living person.
The European General Data Protection Regulation (GDPR) uses a broad definition of what this falls under. As a person who has the advertising provided by Google on his app, you can place the GDPR responsibility with Google if you do not collect personal data with that app, such as and not limited to email addresses, IDs and network addresses.

Because if you simply: don't collect anything, you don't have to store anything, keep anything, don't provide any information, don't explain anything, don't protect anything, don't clean up anything. The very first question that you should always start with and that will help you with this is: What is the indisputable reason for (in this case) collecting information? I can tell you that in practice, in most cases, a well-founded and irrefutable argumentation is simply lacking.

 

[mcqueccu]

Thats the thing, even if you dont collect anything, but the fact that you have FirebaseAdmob in the application, according to them, the burden lies on you to declare that your application collects Advertising ID, Imei, etc. See the screenshot below - circled part

 

[MicroDrie]

Malicious persons can abuse an Android application. To counter this, Google is tightening the security strings. Saying is one, but doing is two. The point is not to show your good intentions, but to demonstrably how you guarantee them. Google is now going one step further. It might be more convenient to jointly arrive at some kind of best-practice in which I can contribute my security and privacy knowledge, but I don't offer any programs at Google to verify the correctness of the best-practices advice.

 

[MicroDrie]

Can you give me the url for the questionnaire from the first post?

 

[MicroDrie]

Found three methods on the Internet as a start point. There are a lot of other rules like a program name of maximum 30 characters, rules for app title, icon, and developer name, Google Play icon design specifications, required privacy statement, and relation with used SDK's.

I really appreciate getting feedback on usability so that others can benefit from it.

Method 1 (Preferred)

1. Open Google Play Console
2. App content
3. Data safety => Manage
4. Overview click next
5. Answer the questions (then next):
6. Does your app collect or share any of the required user data types? = yes
7. Is all of the user data collected by your app encrypted in transit? = yes
8. Do you provide a way for users to request that their data is deleted? = yes
9. go to Device or other IDs and check it then next
10. check Device or other IDs and manage it
11. answer the questions
12. Is this data collected, shared, or both? = Collected
13. Is this data processed ephemerally? = yes
14. Is this data required for your app, or can users choose whether it’s collected? = Users can choose whether this data is collected
15. Why is this user data collected? = check App functionality
16. then save
17. click next and save and app will review and approved by play store team

Method 2

1. Open Google Play Console
2. App content
3. Data safety => Manage
4. Overview click next
5. Answer the questions (then Click on next):
6. Does your app collect or share any of the required user data types? = yes
7. Is all of the user data collected by your app encrypted in transit? = yes
8. Do you provide a way for users to request that their data be deleted? = yes
9. In the last go to Device or other IDs and check it then click next
10. Check Device or other IDs and manage it

Answer these questions in the play console:

1. Is this data collected, shared, or both? = Collected
2. Is this data processed ephemerally? = yes
3. Is this data required for your app, or can users choose whether it’s collected? = Users can choose whether this data is collected
4. Why is this user data collected? = check App functionality

Then click save
Click the next Button and save

The app will be reviewed and approved by the play store team. After that your app should be live soon …

Method 3

1. Open Google Play Console
2. App content
3. Data safety => Manage
4. Overview click next
5. Answer the questions (then Click on next):
6. Does your app collect or share any of the required user data types? = yes
7. Is all of the user data collected by your app encrypted in transit? = yes
8. Do you provide a way for users to request that their data is deleted? = yes
9. go to Device or other IDs and check it then click next
10. check Device or other IDs and manage it
11. answer the questions
12. Is this data collected, shared, or both? = Collected
13. Is this data processed ephemerally? = yes
14. Is this data required for your app, or can users choose whether it’s collected? = Users can choose whether this data is collected
15. Why is this user data collected? = check App functionality

then save
click next Button and save and app will review and approved by play store team after review your app live…