Ir para o conteúdo principal
Todos os cenários

Mobile App

Apps collect more data than websites — and the rules are stricter.

Mobile apps access device sensors, location data, push notifications, and app store ecosystems — each with its own regulatory implications beyond standard web compliance.

Verificação da realidade

Does your app's privacy policy cover all data collected by third-party SDKs you've integrated?

GDPR (General Data Protection Regulation)

mandatory Art. 5(1)(c), Art. 6, Art. 7, Art. 25

As suas obrigações

  • Consent before accessing device features (camera, location)
  • Privacy policy accessible before first use
  • App store privacy labels must match actual processing
  • DPAs with all SDK providers (analytics, crash reporting)
  • Data minimisation — only collect what's necessary

O SiteGuardian monitoriza isto

  • TLS/HTTPS encryption monitoring
  • Automated cookie consent detection
  • Security headers analysis
  • Email transport encryption checks
  • Breach notification SLA tracking (72h)
  • Digital DPA/AVV signing

Risco se ignorado

App store removal for privacy violations. Class action lawsuits (noyb-style complaints). Fines per user affected.

ePrivacy Directive (Cookie Consent)

mandatory Art. 5(3)

As suas obrigações

  • Consent for device storage access (equivalent to cookies)
  • Consent for advertising identifiers (IDFA/GAID)
  • No tracking without explicit opt-in

O SiteGuardian monitoriza isto

  • Pre-consent cookie and tracker detection
  • Cookie banner presence and configuration analysis
  • Reject option validation
  • Consent mode compatibility check

Risco se ignorado

Apple/Google ATT enforcement. CNIL fines for app tracking without consent (multiple €M penalties in 2023-2024).

Cyber Resilience Act (CRA)

conditional Art. 10, Art. 11, Art. 13

As suas obrigações

  • Security by design for products with digital elements
  • Vulnerability handling and disclosure obligations
  • Security updates for the product's expected lifetime
  • Software Bill of Materials (SBOM) provision

O SiteGuardian monitoriza isto

  • TLS version and cipher suite monitoring
  • Security headers enforcement checks
  • Certificate chain and expiry validation

Risco se ignorado

Products banned from EU market. Fines up to €15M or 2.5% of global turnover.

European Accessibility Act (EAA)

mandatory Art. 4, Art. 13, Art. 31

As suas obrigações

  • Mobile app accessibility (VoiceOver/TalkBack support)
  • Touch target sizes per WCAG 2.2
  • Accessible gestures and alternative input methods

O SiteGuardian monitoriza isto

  • WCAG 2.2 Level AA conformance auditing
  • Automated accessibility scoring
  • Violation severity breakdown and remediation hints
  • Daily accessibility scans

Risco se ignorado

App store accessibility requirements increasing. Legal complaints under national EAA laws from June 2025.

Isto aplica-se a si?

Se responder sim a 2 ou mais, estes regulamentos muito provavelmente aplicam-se ao seu negócio.

Veja onde está

O nosso scanner gratuito verifica a postura de segurança do seu site, SSL, cabeçalhos, autenticação de e-mail e mais. Sem necessidade de conta.

Scan your app's backend security
Ver todos os cenários · Diretório regulamentar da UE · Plano Compliance

Esta página fornece informações gerais sobre os quadros regulamentares da UE. Não constitui aconselhamento jurídico. Consulte um profissional jurídico qualificado para obter aconselhamento específico à sua situação. O SiteGuardian documenta a sua monitorização de forma contínua — a conformidade é da responsabilidade da sua organização.