3 provincial and international data protection authorities (including Canada, UK, Ireland and more) have signed a joint open letter to the operators of seven mobile app marketplaces (including Google Play, Apple App store and  Amazon Appstore) urging them to make links to privacy policies mandatory practice for apps which collect personal data.

The data protection authorities observed that mobile operating system developers and other app marketplace operators, play a unique and integral role in users’ interactions with apps, as an important consumer landing spot where individuals may access technical information, as to a particular app, prior to downloading it. Given the wide-range and potential sensitivity of the data stored in mobile devices, they called upon the mobile app marketplaces to require each app that can access or collect personal information, to provide users with timely access to the app’s privacy policy, thereby enabling individuals to be meaningfully informed.