During its WWDC 2021 event, Apple made a number of policy changes to the App Store, adjusting the rules for everything from bounty hunting to whether Roblox is a game or not. Now, with the 2022 WWDC event set to begin on June 6, Apple is reminding developers that it’s ready to trigger some previously delayed policy updates.
Two changes to the App Store rules that Apple is confirming will take effect on June 30: a requirement that apps offering online group payment services use their in-app payment system, and a requirement that forces developers to delete accounts easily (including stored personal data). within any application that allows users to create an account.
The policy on online group services (such as classes and events) was not part of the WWDC 2021 set of changes; it’s actually earlier, but Apple has delayed the application three times. The first delay came in 2020 after Facebook complained that it would unfairly affect vulnerable small businesses, and then another delay came in the spring of 2021. It finally went into effect last January, along with the policy on allowing users to initiate account deletion from within an application.
But on Jan. 22, Apple pushed the deadline for the two changes a few more months to June 30, saying it would give developers more time to update their apps, and we don’t expect to see any more delays now that Apple has sent reminders. One is a note about the account deletion requirement, which you can read below, but both policies are listed on the upcoming changes page for developers.
Apple Account Removal Requirements:
The account deletion option should be easy to find in your application.
If your app offers Sign in with Apple, you’ll need to use the Apple REST API to revoke user tokens when you delete an account.
It is insufficient to provide only the ability to temporarily deactivate or deactivate an account. People should be able to delete the account along with their personal data.
Highly regulated industry applications can provide additional customer service flows to confirm and facilitate the account deletion process.
Follow applicable legal requirements to store and retain user account information and to manage account deletion. This includes compliance with local laws in different countries or regions. As always, check with your attorney.