Collection

App security and privacy

A collection of documents relating to the government's policy on app security and privacy.

• From: Department for Science, Innovation and Technology
• Published: 9 December 2022

Applications (“apps”) are increasingly essential to everyday life and work. Apps are primarily accessed via app stores across a range of devices, including desktops, smartphones, smart TVs, games consoles, smart speakers and wearables. The UK government has investigated the app ecosystem and found a range of threats relating to malicious and poorly developed apps. The government has therefore been developing policy interventions to address these issues.

This page brings together the full range of evidence, public consultation and policy papers which are part of this work.

The government’s intention is to ensure consumers are protected from online threats by taking forward a robust set of interventions which are proportionate, pro-innovation and future-facing.

On 13 October 2023, following a public consultation and subsequent industry feedback, the government published an updated Code of Practice for all app store operators and app developers.

The Code sets out the minimum security and privacy requirements which should be followed by app store operators and app developers. The government strongly believes the Code of Practice will help protect users from malicious and poorly developed apps.

This work is part of the government’s £2.6 billion National Cyber Strategy which is helping to protect and promote the UK digital economy. A key part of this is improving cyber resilience across the economy and making sure the technology we use every day at home and at work is secure.

Evidence and research documents

Written ministerial statement to Parliament on app security

9 Dec 2022 - Parliamentary statement

Mapping the app security standards landscape - report by Copper Horse

9 Dec 2022 - Research paper

Mapping the global app store landscape - report by Copper Horse

9 Dec 2022 - Research paper

Literature review on security and privacy policies in apps and app stores

4 May 2022 - Literature review

National Cyber Security Centre threat report on application stores

4 May 2022 - Threat assessment

Apadmi report on security and privacy in app development across different app stores

4 May 2022 - Research paper

Documents

• Code of practice for app store operators and app developers
  • 24 October 2023
  • Policy paper
• New rules for apps to boost consumer security and privacy
  • 9 December 2022
  • Press release
• App security and privacy interventions
  • 9 December 2022
  • Consultation outcome
• Review of security and privacy recommendations for non-mobile apps and app stores
  • 9 December 2022
  • Research and analysis
• Tougher consumer protections against malicious apps
  • 2 June 2022
  • Press release

Published 9 December 2022