Nearly all apps do not comply with GDPR, finds study

No less than 98% of leading apps do not comply with GDPR, finds a study from Crownpeak.

The study also found that 79% of the top 50 Android apps and top 50 Apple apps offer no consent solution at all.

Crownpeak, which describes itself as a digital governance management company, said that despite the findings of the survey, “every app that was scanned displayed multiple Software Development Kits (SDKs) that appeared to perform some kind of data collection.”

Gabe Morazan, Senior Product Manager at Crownpeak said: “The study shows that apps are a black spot for compliance. On 25th May, consent notices delivered a more informed user experience when browsing on desktop or mobile. But it appears that apps lag behind in compliance programs. This is particularly worrying, considering that, according to an eMarketer report, apps comprise over 90% of internet time on smartphones.

“Our study showed that users rarely have the ability to control exactly which aspects of their data is shared, signalling lack of genuine consent. On top of this, apps such as Facebook, Instagram, WhatsApp and even Android itself, have already come under fire for removing access to their products for users who do not consent to data sharing. Yet at the same time, audiences are already asking more questions about the level of data that apps request access to, such as those which unnecessarily ask for permission to view contact information. It suggests a growing gap between consumer expectations and publisher priorities.”


The inaugural Data Protection World Forum (DPWF) will be held on November 20th & 21st 2018 at the ExCeL London which will provide a broader focus across the data protection and privacy space amidst the progressive tightening of global data protection laws.

Ahead of the end of year event, DPWF has launched a series of intensive workshops.

Further information on the DPWF and workshop details are available at: https://www.dataprotectionworldforum.com/