关于第三方潜在 CAID SDK导致的5.1.2问题
因5.1.2条款,目前可以确认的原因有以下两大:
一、如果你带有中国广告协会的SDK,则必定过不了且如果之前有在线的,想必都已收到苹果限期下架的邮件。
1.2 - Data use & sharing
Please review this information carefully as it impacts your app’s availability on the App Store and requires your immediate action.
Hello,
We are writing to let you know about new information regarding your app.
Upon re-evaluation, we found that your app is not in compliance with the App Store Review Guidelines. Specifically, we found your app is in violation of the following:
Guideline 5.1.2 - Legal - Privacy - Data Use and Sharing
We found that your app collects user and device information to create a unique identifier for the user’s device.
Specifically, through the implementation of instance methods such as setBootTimeInSec:, setCarrierInfo:, setCountryCode:, setDeviceName:, setDisk:, setLanguage:, setMachine:, setMemory:, setModel:, setSysFileTime:, setSystemVersion:, and setTimeZone:, your app uses algorithmically converted device and usage data to create a unique identifier and track the user.
Per 3.3.9 of the Apple Developer Program License Agreement, neither you nor your app can use any permanent, device-based identifier, or any data derived therefrom, for purposes of uniquely identifying a device.
Next Steps
To resolve this issue, remove any functionality from your app that uses algorithmically converted device and usage data to create a unique identifier for the user’s device. Additionally, remove any related code that derives data from the device for the purpose of uniquely identifying it.
To ensure there is no interruption of the availability of your app on the App Store, please submit an update within 14 days of the date of this message. If we do not receive an update compliant with the App Store Review Guidelines within 14 days, your app will be removed from sale. Please note, if your app is found to be out of compliance for any reason and rejected after the time period provided has elapsed, your app will be removed from sale until a compliant update is submitted, approved and released to the App Store. If your app is removed from sale, the TestFlight version of this app will also be unavailable for external and internal testing and all public TestFlight links will no longer be functional.
Resources
Review Frequently Asked Questions about the new requirements for apps that track users.
In order to return your app to the App Store, you will need to submit an updated version for review which addresses this issue.
If you have any questions about this information, please reply to this message to let us know.
这里是引用
邮件正文里写的很清楚,如果你不处理,则必定在14天内下架应用。但令人尴尬的事,有一个开发者了在收到此邮件后,紧急移除中国广告协会的SDK并提审更新,但却被给了个other双蛋的延长审核,重点在于,在14天后苹果已将其应用下架了,审核却还没有结果。可悲。
中国广告法协会的坑,大家一定要谨慎。之前还有新闻报导说中国广告协会正在与苹果沟通,这有点太可笑了。
二、带有第三方潜在隐私风险的SDK。
目前可以确认的有:
1、腾讯Bugly SDK
截止到4月7日,Bugly官方已修复了SDK的风险,请大家第一时间前往更新。更新地址:https://bugly.qq.com/docs/release-notes/release-ios-bugly/?v=20210329201525
2、友盟SDK
目前也确认存在被苹果定义为有隐私风险。升级地址:https://developer.umeng.com/sdk
如果是因为我们自己应用的问题被拒,我们技不如人无话可说,再自我修练即可。但如果是因为这些第三方的SDK导致,那就太冤了。