FTC offers guidance for mobile application development

Share this article:

As enterprises expand their roll-outs of mobile applications, the Federal Trade Commission wants them to be mindful of the privacy and security ramifications that go along with these advancements.

The consumer protection agency on Wednesday released new guidelines covering a number of risk vectors around application development for smartphones and tablets.

On the privacy front, the FTC advised organizations to consider privacy from the start; be transparent about data practices; provide users with choices to control their information, such as opt-out settings and collect information only after gaining consent. In addition, the agency asked businesses to live up to their privacy promises, or they may face FTC charges, which could result in fines.

"What if you decide down the road to change your privacy practices?" the document said. "You'll need to get users' affirmative permission for material changes. Just editing the language in your privacy policy isn't enough in those circumstances. And while you're taking another look at your privacy promises, read them with users in mind. Is the language clear? Is it easy to read on a small screen? Are you using design elements -- color, fonts, and the like -- to call attention to important information?"

The FTC also recommended that developers focus on security, such as ensuring applications only collect pertinent information, are protected against obvious risks and properly dispose of information when it's no longer needed.

The advice comes as enterprises gear up for significant application investments in smartphones and tablets in an effort to increase employee productivity and respond to customer demands.

A recent report from analyst firm Gartner predicted that application development (AD) projects for mobile devices will outnumber traditional app projects by a 4-to-1 ratio in three years.

"Emerging mobile applications, systems and devices are transforming the AD space rapidly, and are one of the top three CIO priorities at the enterprise level," the firm said. "Gartner research found that CIOs expect more than 20 percent of their employees to use tablets instead of laptops by 2013, hastening the process of change as AD tools and applications evolve to address the requirements of these new devices."

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

ISSA tackles workforce gap with career lifecycle program

ISSA tackles workforce gap with career lifecycle program ...

On Thursday, the group launched its Cybersecurity Career Lifecycle (CSCL) program.

Amplification DDoS attacks most popular, according to Symantec

Amplification DDoS attacks most popular, according to Symantec

The company noted in a whitepaper released on Tuesday that Domain Name Server amplification attacks have increased 183 percent between January and August.

Court shutters NY co. selling security software with "no value"

A federal court shut down Pairsys at the request of the Federal Trade Commission.