Vai al contenuto principale
Tutti gli scenari

Mobile App

Apps collect more data than websites — and the rules are stricter.

Mobile apps access device sensors, location data, push notifications, and app store ecosystems — each with its own regulatory implications beyond standard web compliance.

Verifica della realtà

Does your app's privacy policy cover all data collected by third-party SDKs you've integrated?

GDPR (General Data Protection Regulation)

mandatory Art. 5(1)(c), Art. 6, Art. 7, Art. 25

I tuoi obblighi

  • Consent before accessing device features (camera, location)
  • Privacy policy accessible before first use
  • App store privacy labels must match actual processing
  • DPAs with all SDK providers (analytics, crash reporting)
  • Data minimisation — only collect what's necessary

SiteGuardian monitora questo

  • TLS/HTTPS encryption monitoring
  • Automated cookie consent detection
  • Security headers analysis
  • Email transport encryption checks
  • Breach notification SLA tracking (72h)
  • Digital DPA/AVV signing

Rischio se ignorato

App store removal for privacy violations. Class action lawsuits (noyb-style complaints). Fines per user affected.

ePrivacy Directive (Cookie Consent)

mandatory Art. 5(3)

I tuoi obblighi

  • Consent for device storage access (equivalent to cookies)
  • Consent for advertising identifiers (IDFA/GAID)
  • No tracking without explicit opt-in

SiteGuardian monitora questo

  • Pre-consent cookie and tracker detection
  • Cookie banner presence and configuration analysis
  • Reject option validation
  • Consent mode compatibility check

Rischio se ignorato

Apple/Google ATT enforcement. CNIL fines for app tracking without consent (multiple €M penalties in 2023-2024).

Cyber Resilience Act (CRA)

conditional Art. 10, Art. 11, Art. 13

I tuoi obblighi

  • Security by design for products with digital elements
  • Vulnerability handling and disclosure obligations
  • Security updates for the product's expected lifetime
  • Software Bill of Materials (SBOM) provision

SiteGuardian monitora questo

  • TLS version and cipher suite monitoring
  • Security headers enforcement checks
  • Certificate chain and expiry validation

Rischio se ignorato

Products banned from EU market. Fines up to €15M or 2.5% of global turnover.

European Accessibility Act (EAA)

mandatory Art. 4, Art. 13, Art. 31

I tuoi obblighi

  • Mobile app accessibility (VoiceOver/TalkBack support)
  • Touch target sizes per WCAG 2.2
  • Accessible gestures and alternative input methods

SiteGuardian monitora questo

  • WCAG 2.2 Level AA conformance auditing
  • Automated accessibility scoring
  • Violation severity breakdown and remediation hints
  • Daily accessibility scans

Rischio se ignorato

App store accessibility requirements increasing. Legal complaints under national EAA laws from June 2025.

Questo ti riguarda?

Se rispondi sì a 2 o più, queste normative molto probabilmente si applicano alla tua azienda.

Scopri a che punto sei

Il nostro scanner gratuito verifica la postura di sicurezza del tuo sito, SSL, header, autenticazione e-mail e altro. Nessun account necessario.

Scan your app's backend security
Visualizza tutti gli scenari · Directory normativa dell'UE · Piano Compliance

Questa pagina fornisce informazioni generali sui quadri normativi dell'UE. Non costituisce consulenza legale. Consulta un professionista legale qualificato per una consulenza specifica alla tua situazione. SiteGuardian documenta il tuo monitoraggio in modo continuo — la conformità è responsabilità della tua organizzazione.