Mobile App Regulations: Cybersecurity

New FTC Compliance Guide

The FTC brochure covers the basics, like:

• Don’t collect or keep data you don’t need

• Don’t store passwords in plain text

• Use encryption whenever you transmit sensitive information like username or API keys

In order to secure the app in the early phase of product development, FTC is proposing the following steps:

• App developers can code quickly with the support of powerful software development kits (SDKs). However, a rush to release may result in dangerous security oversights.

• Popular app stores can introduce apps to millions of users and can lead to overnight popularity. But the bigger the user base and the more sensitive the information, the greater the need for strong security. Is your app ready?

• Ready-made software libraries and cross-platform toolkits can provide a head start in the development process. However, as a developer, you are your app’s last line of defense, determining what goes in it and how it performs.

• Mobile and Internet-connected devices offer an array of exciting technologies. GPS receivers, cameras, and sensors let you create a unique experience for users. But threats — like loss, theft, and users who rely on unsecured Wi-Fi networks — raise the security stakes. Balance these features and risks to protect users’ personal information and your own business reputation”.