Mobile App

Apps collect more data than websites — and the rules are stricter.

Mobile apps access device sensors, location data, push notifications, and app store ecosystems — each with its own regulatory implications beyond standard web compliance.

Nationale wetten tonen voor:

Realiteitscheck

Does your app's privacy policy cover all data collected by third-party SDKs you've integrated?

GDPR (General Data Protection Regulation)

mandatory Art. 5(1)(c), Art. 6, Art. 7, Art. 25

Uw verplichtingen

Consent before accessing device features (camera, location)
Privacy policy accessible before first use
App store privacy labels must match actual processing
DPAs with all SDK providers (analytics, crash reporting)
Data minimisation — only collect what's necessary

SiteGuardian bewaakt dit

TLS/HTTPS encryption monitoring
Automated cookie consent detection
Security headers analysis
Email transport encryption checks
Breach notification SLA tracking (72h)
Digital DPA/AVV signing

Risico bij niet-naleving

App store removal for privacy violations. Class action lawsuits (noyb-style complaints). Fines per user affected.

ePrivacy Directive (Cookie Consent)

mandatory Art. 5(3)

Uw verplichtingen

Consent for device storage access (equivalent to cookies)
Consent for advertising identifiers (IDFA/GAID)
No tracking without explicit opt-in

SiteGuardian bewaakt dit

Pre-consent cookie and tracker detection
Cookie banner presence and configuration analysis
Reject option validation
Consent mode compatibility check

Risico bij niet-naleving

Apple/Google ATT enforcement. CNIL fines for app tracking without consent (multiple €M penalties in 2023-2024).

Cyber Resilience Act (CRA)

conditional Art. 10, Art. 11, Art. 13

Uw verplichtingen

Security by design for products with digital elements
Vulnerability handling and disclosure obligations
Security updates for the product's expected lifetime
Software Bill of Materials (SBOM) provision

SiteGuardian bewaakt dit

TLS version and cipher suite monitoring
Security headers enforcement checks
Certificate chain and expiry validation

Risico bij niet-naleving

Products banned from EU market. Fines up to €15M or 2.5% of global turnover.

European Accessibility Act (EAA)

mandatory Art. 4, Art. 13, Art. 31

Uw verplichtingen

Mobile app accessibility (VoiceOver/TalkBack support)
Touch target sizes per WCAG 2.2
Accessible gestures and alternative input methods

SiteGuardian bewaakt dit

WCAG 2.2 Level AA conformance auditing
Automated accessibility scoring
Violation severity breakdown and remediation hints
Daily accessibility scans

Risico bij niet-naleving

App store accessibility requirements increasing. Legal complaints under national EAA laws from June 2025.

Is dit op u van toepassing?

Als u op 2 of meer ja antwoordt, zijn deze regelgevingen zeer waarschijnlijk op uw bedrijf van toepassing.

I publish a mobile app on iOS or Android My app uses analytics or crash reporting SDKs My app accesses location, camera, or contacts My app sends push notifications My app is available in EU app stores

Zie waar u staat

Onze gratis scanner controleert de beveiligingsstatus van uw site, SSL, headers, e-mailauthenticatie en meer. Geen account nodig.

Scan your app's backend security

Alle scenario's bekijken · EU-regelgevingsoverzicht · Compliance-abonnement

Deze pagina biedt algemene informatie over EU-regelgevingskaders. Het vormt geen juridisch advies. Raadpleeg een gekwalificeerde juridische professional voor advies specifiek voor uw situatie. SiteGuardian documenteert uw monitoring continu — compliance is de verantwoordelijkheid van uw organisatie.

Mobile App

GDPR (General Data Protection Regulation)

Uw verplichtingen

ePrivacy Directive (Cookie Consent)

Uw verplichtingen

Cyber Resilience Act (CRA)

Uw verplichtingen

European Accessibility Act (EAA)

Uw verplichtingen

Is dit op u van toepassing?

Zie waar u staat

Weet u het zeker?