DCMS proposes code of practice to set minimum privacy requirements for app store operators and developers

In a consultation regarding enhanced security and privacy requirements for firms running app stores and developers making apps, the Department for Digital, Culture, Media and Sport (DCMS) also proposes a Code of Practice for this area.

App stores for smartphones, game consoles, TVs and other smart devices could be asked to commit to a code of practice setting out baseline security and privacy requirements. Operators and developers would have a vulnerability reporting process for each app so flaws can be found and fixed quicker. They would need to share more security and privacy information in an accessible way including why an app needs access to users’ contacts and location, the DCMS says.

This work is part of the government’s National Cyber Strategy. The consultation runs until 29 June 2022. Depending on feedback, the code could be issued later this year.

See GOV.UK - Tougher consumer protections against malicious apps