From 6bfe4478f344cc913a821d7aaa04a98b66bd6646 Mon Sep 17 00:00:00 2001 From: Karl Heinz Struggl Date: Tue, 22 Apr 2025 12:04:59 +0200 Subject: [PATCH 1/4] adds note about how user ids are handled --- docs/security-legal-pii/security/mobile-privacy.mdx | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/docs/security-legal-pii/security/mobile-privacy.mdx b/docs/security-legal-pii/security/mobile-privacy.mdx index 753a55d66b5380..3f988fced43e11 100644 --- a/docs/security-legal-pii/security/mobile-privacy.mdx +++ b/docs/security-legal-pii/security/mobile-privacy.mdx @@ -19,6 +19,10 @@ Data collected by Sentry does not, by default, include any PII. However, you can Sentry processes the data you send to it to provide our application monitoring service to you. +### How does Sentry identify a user? + +Sentry on Mobile uses IDs which are randomly generated per device, per app, and per installation, and therefore not tied to a user. These IDs are solely used to provide approximate statistical information as part of the application monitoring service, for example the [Crash Free Session and User Rates](/product/releases/health/#crash-free-sessionsusers). + ## Apple App Store ### Do I need to disclose the use of Sentry in App Store Connect on the Apple App Store? From adf766cbf600dffe3e65ec498edbe7fbf2fbd202 Mon Sep 17 00:00:00 2001 From: Karl Heinz Struggl Date: Tue, 22 Apr 2025 12:05:23 +0200 Subject: [PATCH 2/4] fix quotation marks --- docs/security-legal-pii/security/mobile-privacy.mdx | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/security-legal-pii/security/mobile-privacy.mdx b/docs/security-legal-pii/security/mobile-privacy.mdx index 3f988fced43e11..1cc21893f78f42 100644 --- a/docs/security-legal-pii/security/mobile-privacy.mdx +++ b/docs/security-legal-pii/security/mobile-privacy.mdx @@ -31,7 +31,7 @@ Yes, Sentry is a third-party partner whose code (SDKs) you integrate in your app ### What do I need to disclose to Apple? -You would need to disclose all types of data you are collecting through your app, including data you are sending to Sentry. In the example above, this could include “Contact Info” or “Identifiers”, but don’t forget to include any other categories of data that you are collecting or have configured the SDKs to send to Sentry. +You would need to disclose all types of data you are collecting through your app, including data you are sending to Sentry. In the example above, this could include “Contact Info” or “Identifiers”, but don't forget to include any other categories of data that you are collecting or have configured the SDKs to send to Sentry. ### How does Sentry use my data? @@ -49,7 +49,7 @@ No. Sentry doesn't require [`IDFA`](https://en.wikipedia.org/wiki/Identifier_for ### Does Sentry collect any PII from children? -By default, Sentry does not collect any PII from children. However, if your app is targeted to children and you configure Sentry to collect PII, then Sentry would collect the elements that you’ve designated. You would remain responsible for obtaining any appropriate parental consents with respect to the PII you collect from your users and subsequently send to Sentry. You would also remain responsible for declaring your app’s target age group to Google Play. +By default, Sentry does not collect any PII from children. However, if your app is targeted to children and you configure Sentry to collect PII, then Sentry would collect the elements that you've designated. You would remain responsible for obtaining any appropriate parental consents with respect to the PII you collect from your users and subsequently send to Sentry. You would also remain responsible for declaring your app's target age group to Google Play. ### Do Sentry SDKs cause my app to contain ads? From 40f32dbb215f2c195f6f8f2d7cb17b1c25674eaa Mon Sep 17 00:00:00 2001 From: Karl Heinz Struggl Date: Tue, 22 Apr 2025 07:49:14 -0700 Subject: [PATCH 3/4] Update docs/security-legal-pii/security/mobile-privacy.mdx Co-authored-by: Bruno Garcia --- docs/security-legal-pii/security/mobile-privacy.mdx | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/security-legal-pii/security/mobile-privacy.mdx b/docs/security-legal-pii/security/mobile-privacy.mdx index 1cc21893f78f42..de475fea849c29 100644 --- a/docs/security-legal-pii/security/mobile-privacy.mdx +++ b/docs/security-legal-pii/security/mobile-privacy.mdx @@ -19,9 +19,9 @@ Data collected by Sentry does not, by default, include any PII. However, you can Sentry processes the data you send to it to provide our application monitoring service to you. -### How does Sentry identify a user? +### Does Sentry use the device ID to identify a user? -Sentry on Mobile uses IDs which are randomly generated per device, per app, and per installation, and therefore not tied to a user. These IDs are solely used to provide approximate statistical information as part of the application monitoring service, for example the [Crash Free Session and User Rates](/product/releases/health/#crash-free-sessionsusers). +No. Sentry on Mobile doesn't use device ID such as `Secure.ANDROID_ID` and `advertisingIdentifier` on iOS. Instead, it uses IDs which are randomly generated per device, per app, and per installation, and therefore can't be used to identify a single device across application installations. When an application is reinstalled, a new ID is generated. Since these IDs are solely used to provide approximate statistical information as part of the application monitoring service, it serves that purpose. It's required, for example, for [Crash Free Session and User Rates](/product/releases/health/#crash-free-sessionsusers), as well as to indicate the [impact of issues based on number of events vs affected users](https://docs.sentry.io/product/issues/issue-details/#trends--aggregates). ## Apple App Store From 76968b8a05a12493a3f047fdc08df78e78d1f1e3 Mon Sep 17 00:00:00 2001 From: Karl Heinz Struggl Date: Wed, 23 Apr 2025 17:16:10 +0200 Subject: [PATCH 4/4] updates --- docs/security-legal-pii/security/mobile-privacy.mdx | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/docs/security-legal-pii/security/mobile-privacy.mdx b/docs/security-legal-pii/security/mobile-privacy.mdx index de475fea849c29..fe48962131a4ad 100644 --- a/docs/security-legal-pii/security/mobile-privacy.mdx +++ b/docs/security-legal-pii/security/mobile-privacy.mdx @@ -13,16 +13,16 @@ Sentry collects only the data that you configure to be sent to Sentry. This is t ### Does that data include any personally identifiable information (PII)? -Data collected by Sentry does not, by default, include any PII. However, you can augment the data sent to Sentry with additional context and metadata, including user names, email addresses, or by attaching files such as logs or crash reports. - -### What does Sentry do with the data it collects? - -Sentry processes the data you send to it to provide our application monitoring service to you. +By default, Sentry uses randomly generated IDs as [described below](#does-sentry-use-the-device-id-to-identify-a-user). You can also augment data sent to Sentry with additional context and meta data, including user names, email addresses, or by attaching files such as logs or crash reports. This data, alone or in combination with other data, may constitute PII if it identifies, directly or indirectly, an individual. ### Does Sentry use the device ID to identify a user? No. Sentry on Mobile doesn't use device ID such as `Secure.ANDROID_ID` and `advertisingIdentifier` on iOS. Instead, it uses IDs which are randomly generated per device, per app, and per installation, and therefore can't be used to identify a single device across application installations. When an application is reinstalled, a new ID is generated. Since these IDs are solely used to provide approximate statistical information as part of the application monitoring service, it serves that purpose. It's required, for example, for [Crash Free Session and User Rates](/product/releases/health/#crash-free-sessionsusers), as well as to indicate the [impact of issues based on number of events vs affected users](https://docs.sentry.io/product/issues/issue-details/#trends--aggregates). +### What does Sentry do with the data it collects? + +Sentry processes the data you send to it to provide our application monitoring service to you. + ## Apple App Store ### Do I need to disclose the use of Sentry in App Store Connect on the Apple App Store?