Data security governance
Data security service Data security risk assessment Data cross-border assessment Personal Information Security Assessment App privacy compliance assessment

App privacy compliance assessment

  • Service Description

    The mobile application (App) privacy compliance assessment service is provided by Xinzhi Technology in accordance with the Personal Information Protection Law of the People's Republic of China and other relevant mobile application development standards and specifications. Through system automation analysis and expert guidance services, it completes the privacy policy content, collection of personal information, minimum frequency necessary, business scenarios, compliance analysis of personal information collection behavior, third-party SDK compliance risk assessment of the App Technical verification of personal information transfer and cross-border communication security requirements, and output verification records and compliance rectification plans; Assist app developers/operators in avoiding business compliance risks, quickly responding to and meeting national and regulatory policy and regulatory requirements.

service content

  • Permission detection

    Identification of app application and access permissions, including permission name, permission classification, sensitivity level, and permission description

  • Privacy policy detection

    Automatically extract privacy policy content, analyze the semantics of clauses in the content, and judge the comprehensiveness and consistency of the content

  • Communication detection

    Real time capture of communication behavior during app operation, monitoring whether the application is engaged in illegal transmission of personal information

  • Behavior detection

    Real time capture of behavior during app operation, monitoring whether there are business scenarios where the application collects personal information in violation of regulations

  • Third party SDK detection

    Identify third-party SDKs integrated in the app, including SDK identification, author, link, and other information

  • Automated deep detection

    deeply traverse app page information, fully browse various business scenarios, perform one click detection and issue detailed reports

Service Value

  • Compliance assessment based on APP information collection meets the Basic Requirements for Personal Information Collection by Mobile Internet Applications (APP)

    Security protection technologies based on the collection, storage, and use of personal information, rights of personal information subjects, handling of personal information security incidents, and evaluation of enterprise personal information security management, to enhance the protection ability and compliance of enterprise personal information

    Conduct security assessments on enterprise apps, systems, etc., and provide security reinforcement suggestions at the system architecture level

    Combining domestic and international compliance requirements, integrating compliance into products from a development perspective, and enhancing the compliance capabilities of enterprise apps