Pixalate Releases Q1 2022 CBPR Compliance Report for Google, Apple App Stores

Pixalate analyzed 3.9MM app privacy policies and published a list of mobile apps with Asia-Pacific Economic Cooperation (APEC) Cross-Border Privacy Rules (CBPR) referenced in their privacy policy, including those registered to companies that do not appear in the CBPR compliance directory.

Pixalate, the global market-leading fraud protection, privacy, and compliance analytics platform for connected TV (CTV) and mobile advertising, examined the privacy policies of ~4 million apps from the Google and Apple mobile app stores. Pixalate found that the privacy policies of 815 apps included a reference to the APEC CBPR System as of Q1 2022. See the full Q1 2022 CBPR Compliance Report here.

In the United States the Federal Trade Commission (FTC) is the privacy enforcement authority (PEA). Most recently, the FTC brought enforcement actions against three companies and issued warning letters to 28 companies for falsely representing that they participated in the APEC CBPR system.

Marketing Technology News: Ad-Tech Pioneer Prizeout Partners With Cutting-Edge Cryptocurrency Rewards Platform Flycoin to Give…

KEY FINDINGS

According to Pixalate, of the 815 apps with “APEC CBPR” in their privacy policy:

  • 40% are registered to companies not listed in the CBPR Compliance Directory, but may be affiliated with a certified  company.
  • 46% are registered in the United States.
    • 310 of the apps registered in the U.S. have companies of certification listed in the CBPR Compliance Directory.
    • 65 of the apps registered in the U.S. have companies of purported certification that are not listed in the CBPR Compliance Directory.
  • 15% are apps in Medical, and Health & Fitness categories and registered to companies not listed in the CBPR Compliance Directory.
  • 5% that are likely child-directed apps, according to Pixalate’s Children’s Online Privacy Protection Act (COPPA) compliance methodology, and registered to companies not listed in the CBPR Compliance Directory.

Pixalate cross-matched apps that reference APEC CBPR in their privacy policies with companies listed in the CBPR compliance directory. The list of all apps with APEC CBPR terms is broken down by those that do appear in the compliance directory and those that do not.

Marketing Technology News: MarTech Interview With Regina Soller-Gould, VP of Revenue Marketing at Ada

What is APEC CBPR, and why is this important?

The APEC forum is the leading organization in the Asia-Pacific region that facilitates trade and investment, economic growth and regional cooperation. The APEC Cross-Border Privacy Rules (CBPR) System is a voluntary, enforceable, accountability-based certification that allows for the transfer of personal data among the nine participating economies. The participant economies are: Australia, Chinese Taipei, Canada, Japan, the Republic of Korea, Mexico, Singapore, and the United States.

According to the CBPR Compliance Directory, there are 49 companies certified. Once a company joins the system and is certified by a third-party Accountability Agent, the certification becomes legally enforceable by the PEA in the economy in which the company has been certified. If a company falsely represents that they participate in the APEC CBPR System, the PEA can bring an enforcement action against the company.

Brought to you by
For Sales, write to: contact@martechseries.com
Copyright © 2024 MarTech Series. All Rights Reserved.Privacy Policy
To repurpose or use any of the content or material on this and our sister sites, explicit written permission needs to be sought.