Microsoft App Hub is a resource site for developers who wish to submit applications for Windows Phones and Xbox 360 through Windows Marketplace, Microsoft’s virtual store for applications and other products. To use the App Hub, developers must follow by privacy terms in both the 1) Application Certification Requirements for Windows Phone (last updated September 23, 2011) and 2) the Microsoft Hub Application Provider Agreement (last updated June 2011)

  • Privacy Requirements
    • Privacy Policy: “If your application enables access to and use of Internet-based or mobile services or otherwise collects and/or transmits user information to you or a third party, you must maintain a privacy policy and are responsible for informing Purchasers of your terms of use and privacy policy that apply.” (Section (4)(d) of the Provider Agreement)
      • Your privacy policy must (i) comply with applicable laws and regulations, (ii) inform users of the information collected by your app and how that information is used, stored, secured and disclosed, and (iii) describe the controls that users have over the use and sharing of their information, and how they may access their information.
    • Consent and Use of Data: If your app shares a user’s personal information (including, but not limited to Contacts, Photos, Phone number, SMS, Browsing history or unique device or user IDs combined with user information) with third parties, the application must implement a method to obtain “opt-in” consent. (Section 2.8 of the Certification Requirements)To “implement a method to obtain ‘opt-in’ consent,” the application must:

1) provide your privacy policy, which at a minimum must describe how the personal information will be used or shared;

2) obtain the user’s express permission before sharing the information as described; and

3) provide a mechanism through which the user can later opt out of having the information shared.

    •  Location Data: Your privacy policy must inform users about 1) how location data is used, 2) how it is disclosed, and 3) the controls users have over their location data. The application must provide in-application settings that allow the user to enable and disable your application’s access to and use of location. If your Application publishes or makes available location data from the Location Service API to any other service or other person (including advertising networks), your application must implement a method to obtain opt-in consent. (Section 2.7 of the Certification Requirements)

      To “implement a method to obtain ‘opt-in’ consent,” the application must:

(a) describe how the location information will be used or shared;

(b) obtain the user’s express permission before publishing the location information; and

(c) provide a mechanism through which the user can later opt out of having the location information published. Your application must periodically remind users or provide a visual indicator that location data is being sent to any other service or person

    • Use of Other Features: If your app uses the geolocation, texting/SMS, webcam or microphone capabilities, you must also provide access to your privacy policy in the app’s settings as displayed in the Windows settings charm. (Section 3(f) of the App Developer Agreement)
  • Useful Resources

 

About
Contact
Supporters
Privacy Policy
 Learn
Do / Tools
Showcase
 Consumers
Rate and Review Applications
 Blog