Apple Allows App Users to Manage Data Stored in iCloud
12 April, 2018
To keep the trust on the apps, especially the social networking apps where the user provides much of his private data, Apple now allows the app users to manage the data stored in iCloud. This helps the iOS app developer to make the apps comply with the European Union’s upcoming General Data Protection Regulation (GDPR). Apple now provides tools that help the developers to fulfill data requests made by their app users in the EU or around the world.
These requests can include:
- The ability to get a copy of data associated with a user
- The ability to temporarily deactivate or restrict access to the data associated with a user
- The ability to delete the data associated with a user completely.
The app users may make requests to Apple or to developers directly.
Providing Ways to Export Data and Delete Data
The developer can let their users manage data that’s associated with their app and stored in iCloud by using native APIs and Web APIs.
Providing User Access to CloudKit Data
This gives users access to the data stored by the developer’s app on their behalf. When a user requests a copy of the data associated with their Apple ID, it includes only the data that Apple maintains directly, such as documents in iCloud Drive. Data stored in third-party CloudKit containers are not included in any export that Apple provides. Developers should provide their own method for users to get a copy of data stored in their CloudKit containers.
Responding to Requests to Delete Data
This provides options for users to delete their CloudKit data from your app.
Providing Ways to Restrict Data
When a user requests to temporarily deactivate their Apple ID, no additional data will be stored in iCloud, and the account will be locked until the user reactivates it. In this case, CloudKit APIs will return errors that the application will need to handle.
To allow users to restrict their account in the app, the developer need to use the restrict API provided by CloudKit Web Services to temporarily restrict a specific CloudKit container. If a user temporarily restricts a specific container, existing CloudKit APIs will also return errors that the developer will need to handle.