US Govt issues app development guidelines

Powered by SC Magazine
 

Raises privacy, security risks of mobile apps.

The US Federal Trade Commission has issued a new set of guidelines outlining a number of risk vectors around enterprise mobile application development.

The consumer protection agency asked organisations to consider privacy from the start; be transparent about data practices; and provide users with choices to control their information, such as opt-out settings and collect information only after gaining consent.

It also urged businesses to live up to their privacy promises, or they may face FTC charges, which could result in fines.

"What if you decide down the road to change your privacy practices?" the document said. "You'll need to get users' affirmative permission for material changes.

"Just editing the language in your privacy policy isn't enough in those circumstances. And while you're taking another look at your privacy promises, read them with users in mind.

"Is the language clear? Is it easy to read on a small screen? Are you using design elements -- color, fonts, and the like -- to call attention to important information?"

The FTC urged developers to focus on security by ensuring applications only collect pertinent information, are protected against obvious risks and properly dispose of unnecessary information.

The advice comes as enterprises gear up for significant application investments in smartphones and tablets in an effort to increase employee productivity and respond to customer demands.

A recent report from analyst firm Gartner predicted that application development (AD) projects for mobile devices would outnumber traditional app projects by a four-to-one ratio in three years.

"Emerging mobile applications, systems and devices are transforming the AD space rapidly, and are one of the top three CIO priorities at the enterprise level," the firm said.

"Gartner research found that CIOs expect more than 20 percent of their employees to use tablets instead of laptops by 2013, hastening the process of change as AD tools and applications evolve to address the requirements of these new devices."

This article originally appeared at scmagazineus.com

Copyright © SC Magazine, US edition


US Govt issues app development guidelines
 
 
 
Top Stories
ATO shaves $4m off IT contractor panel
Reform cuts admin burden, introduces KPIs.
 
Turnbull introduces data retention legislation
Still no definition of metadata to be stored.
 
Crime Commission prepares core systems overhaul
Will replace 30 year-old national criminal database.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  27%
 
Sourcing and strategy
  13%
 
IT infrastructure (servers, storage, networking)
  21%
 
End user computing (desktops, mobiles, apps)
  14%
 
Software development
  25%
TOTAL VOTES: 437

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  54%
 
No
  46%
TOTAL VOTES: 210

Vote