I am currently developing an SMS filter extension and would like to clarify certain aspects of App Store policies and Apple's privacy guidelines regarding data collection.
In my extension, SMS messages are filtered using the deferQueryRequestToNetwork method to perform server-based filtering. While I understand and respect Apple’s prohibition on transmitting or storing sensitive data such as message content or sender information, I am considering collecting non-personally identifiable statistical data related to the filtering process, such as:
- The total number of messages filtered via the extension.
- Hourly statistics of filtered messages.
- Category-based statistics (e.g., promotion, phishing, transaction).
This statistical data would be:
- Fully anonymized, ensuring no personally identifiable information (PII) is collected or stored.
- Used exclusively for providing users with aggregated insights, such as daily or weekly filtering statistics, and improving the filtering process.
Given that the filtering occurs via the deferQueryRequestToNetwork mechanism, the data collection would involve the server but would remain strictly limited to anonymized statistics. Furthermore:
- Users would be fully informed about this data collection via a transparent privacy policy and in-app notification.
- Explicit user consent would be obtained before collecting or transmitting any data.
- Data transmission would be secured, and no raw message content or sender details would ever be stored or transmitted.
Could you confirm if this practice complies with Apple’s policies? Are there any additional requirements or recommendations for handling anonymized statistical data collected via server-based filtering in an SMS filter extension?