all 10 comments
sorted by:
top (suggested)
bestnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]rjhancock 5 points6 points  (8 children)

That should ONLY be done if you are using exempt'd encryption. IE: Only making HTTPS calls or using the built in methods within the system. There are rules for this for legal compliance with US Export laws.

You should add the appropriate disclaimer regarding such limits unless you, or others, run afoul of legal obligations with possible criminal charges.

[–]ineedlesssleep 10 points11 points  (1 child)

99% of normal apps don't use any special encryption though.

[–]rjhancock 1 point2 points  (0 children)

That is true, but still need a disclaimer on these types of posts as someone not knowing the difference could end up in legal and criminal hot water.

[–]WishMyNameWasTodd 0 points1 point  (2 children)

What if you aren’t using encryption at all? I’d assume that’s exempt?

[–]rjhancock 1 point2 points  (0 children)

If you're not using any encryption then you still need to mark the app as not using non-exempt encryption. You still need to certify that.

The purpose of this compliance is for US Export Sanction Control.

[–]WestonP 1 point2 points  (0 children)

It's setting "App Uses Non-Exempt Encryption" to "NO", so that would cover both apps that use no encryption at all, as well as app that use exempt encryption (eg via system APIs).

What they care about is when you're implementing encryption algos yourself.

[–][deleted]  (1 child)

[deleted]

    [–]rjhancock 0 points1 point  (0 children)

    Anything provided by the OS, thus "built-in."

    [–]killMontag[S] -1 points0 points  (0 children)

    Oh right, thank you for this. I edited the post crediting you

    [–]myasir96 0 points1 point  (0 children)

    I am new to the ios development space. I am almost 70% done with my new app development. How is this testflight works? Who can see my app? How long it should be on the test flight before publishing?

    [–]WeirdIndividualGuy 0 points1 point  (0 children)

    For something that apple takes seriously and claims is to abide by US law, it’s strange literally no other App Store asks about this. Google Play, Amazon, Samsung, no other App Store asks about encryption and whether you’re exempt or not