- Resource: Report
- AppBundle
- AppBundleReleaseType
- Check
- CheckType
- CheckSeverity
- CheckState
- CheckStateMetadata
- CheckStateBadge
- CheckCitation
- CitationType
- CheckEvidence
- CheckPrivacyPolicyTextEvidence
- PolicyFragment
- CheckDataTypeEvidence
- DataType
- DataTypeEvidence
- DataTypeEndpointEvidence
- ExfiltratedDataType
- EndpointDetails
- Endpoint
- AttributedSdk
- Sdk
- DataTypePermissionEvidence
- Permission
- DataTypePrivacyPolicyTextEvidence
- CheckEndpointEvidence
- CheckPermissionEvidence
- CheckSdkEvidence
- CheckDataSecurityEvidence
- DataInTransitInfo
- CheckSdkIssueEvidence
- CheckEndpointRestrictionViolationEvidence
- EndpointDetails
- CheckPermissionRestrictionViolationEvidence
- PermissionDetails
- CheckSdkRestrictionViolationEvidence
- SdkDetails
- DataMonitoring
- DataMonitoringEndpointResult
- DataMonitoringResultMetadata
- DataMonitoringResultBadge
- DataMonitoringPermissionResult
- DataMonitoringDataTypeResult
- DataMonitoringSdkResult
- Methods
Resource: Report
Privacy report.
JSON representation |
---|
{ "name": string, "resultsUri": string, "appBundle": { object ( |
Fields | |
---|---|
name |
Resource name of the report. |
resultsUri |
A URL to view results. |
appBundle |
Information about the analyzed app bundle. |
checks[] |
List of checks that were run on the app bundle. |
dataMonitoring |
Information related to data monitoring. |
AppBundle
Information about the analyzed app bundle.
JSON representation |
---|
{
"bundleId": string,
"version": string,
"versionId": string,
"releaseType": enum ( |
Fields | |
---|---|
bundleId |
Unique id of the bundle. For example: "com.google.Gmail". |
version |
The user-visible version of the bundle such as the Android |
versionId |
The version used throughout the operating system and store to identify the build such as the Android |
releaseType |
Identifies the type of release. |
codeReferenceId |
Git commit hash or changelist number associated with the release. |
AppBundleReleaseType
Identifies the type of release. This enum may include more values in the future.
Enums | |
---|---|
APP_BUNDLE_RELEASE_TYPE_UNSPECIFIED |
Not specified. |
PUBLIC |
Published production bundle. |
PRE_RELEASE |
Pre-release bundle. |
Check
A check that was run on your app.
JSON representation |
---|
{ "type": enum ( |
Fields | |
---|---|
type |
The type of check that was run. A type will only appear once in a report's list of checks. |
severity |
The urgency or risk level of the check. |
state |
The result after running the check. |
stateMetadata |
Additional information about the check state in relation to past reports. |
regionCodes[] |
Regions that are impacted by the check. For more info, see https://google.aip.dev/143#countries-and-regions. |
citations[] |
Regulations and policies that serve as the legal basis for the check. |
evidence |
Evidence that substantiates the check result. |
CheckType
The unique identifier for a check within a report.
Enums | |
---|---|
CHECK_TYPE_UNSPECIFIED |
Not specified. |
STORE_LISTING_PRIVACY_POLICY_LINK_PRESENT |
Checks that your store listing includes a working link to your privacy policy. |
PRIVACY_POLICY_UPDATE_DATE_RECENT |
Checks that your privacy policy has been updated recently. |
PRIVACY_POLICY_GDPR_GENERAL_RULES |
Checks if your privacy policy references rights under GDPR for users in the EU. |
PRIVACY_POLICY_CCPA_GENERAL_RULES |
Checks if your privacy policy references rights under the CCPA. |
PRIVACY_POLICY_COLLECTION_CATEGORIES_DATA_NOTICE |
Checks if your privacy policy mentions the categories of personal data that are collected. |
PRIVACY_POLICY_PROCESSING_PURPOSE_DATA_NOTICE |
Checks if your privacy policy explains why personal data is processed. |
PRIVACY_POLICY_SHARING_CATEGORIES_DATA_NOTICE |
Checks if your privacy policy includes information about third-party sharing of personal data. |
PRIVACY_POLICY_DATA_RETENTION_NOTICE |
Checks if your privacy policy describes your data retention practices. |
PRIVACY_POLICY_CONTACT_DETAILS_NOTICE |
Checks if contact information is included in your privacy policy. |
PRIVACY_POLICY_CHILDREN_GENERAL_RULES |
Checks if information about requirements related to children is included in your privacy policy. |
PRIVACY_POLICY_DATA_TYPE_PHONE_NUMBER |
Checks if the Phone Number data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_USER_ACCOUNT_INFO |
Checks if the User Account Info data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_PRECISE_LOCATION |
Checks if the Precise Location data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_DEVICE_ID |
Checks if the Device ID data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_APPS_ON_DEVICE |
Checks if the Apps on Device data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_CONTACTS |
Checks if the Contacts data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_TEXT_MESSAGES |
Checks if the Text Messages data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_PII |
Checks if the PII data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_PII_CATEGORIES |
Checks if the PII Categories data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_DATA_TYPE_HEALTH_AND_BIOMETRIC |
Checks if the Health and Biometric data type declaration in your privacy policy matches usage. |
PRIVACY_POLICY_BRAZIL_LGPD_GENERAL_RULES |
Checks if your privacy policy references rights under LGPD for users in Brazil. |
PRIVACY_POLICY_VIRGINIA_VCDPA_GENERAL_RULES |
Checks if your privacy policy references rights under VCDPA for users in Virginia. |
PRIVACY_POLICY_AFFILIATION_MENTION |
Checks if your privacy policy identifies your company or app name(s). |
PRIVACY_POLICY_RIGHT_TO_DELETE_NOTICE |
Checks if your privacy policy mentions your users' right to delete their data. |
PRIVACY_POLICY_RIGHT_TO_ACCESS_NOTICE |
Checks if your privacy policy mentions your users' right to access the data held about them. |
PRIVACY_POLICY_RIGHT_TO_RECTIFICATION_NOTICE |
Checks if your privacy policy mentions your users' right to correct inaccuracies within their data. |
PRIVACY_POLICY_RIGHT_TO_KNOW_ABOUT_SELLING_NOTICE |
Checks if your privacy policy mentions your users' right to know about information selling. |
PRIVACY_POLICY_RIGHT_TO_KNOW_ABOUT_SHARING_NOTICE |
Checks if your privacy policy mentions your users' right to know about information sharing. |
PRIVACY_POLICY_RIGHT_TO_OPT_OUT_FROM_SELLING_NOTICE |
Checks if your privacy policy mentions your users' right to opt out from information selling. |
PRIVACY_POLICY_METHOD_TO_OPT_OUT_FROM_SELLING_OR_SHARING_NOTICE |
Checks if your privacy policy explains how your users opt out from the selling or sharing of their data. |
PRIVACY_POLICY_DATA_CONTROLLER_IDENTITY |
Checks if your privacy policy provides the name and contact information for your data controller. |
PRIVACY_POLICY_DPO_CONTACT_DETAILS |
Checks if your privacy policy provides the name and contact information for your Data Protection Officer. |
PRIVACY_POLICY_RIGHT_TO_LODGE_A_COMPLAINT |
Checks if your privacy policy mentions your users' right to lodge a complaint with a supervisory authority. |
PRIVACY_POLICY_LEGAL_BASIS |
Checks if your privacy policy mentions the legal basis you rely on for processing your users' data. |
PRIVACY_POLICY_CHILDREN_INFO_COLLECTION |
Checks if your privacy policy mentions what personal information is collected from children. |
PRIVACY_POLICY_CHILDREN_INFO_USAGE_PURPOSES |
Checks if your privacy policy mentions why you collect personal information from children. |
PRIVACY_POLICY_CHILDREN_INFO_DISCLOSURE_PRACTICES |
Checks if your privacy policy mentions what personal information from children is shared with third parties. |
PRIVACY_POLICY_CHILDREN_INFO_PUBLICITY |
Checks if your privacy policy mentions whether your app allows children to make their personal information publicly available. |
PRIVACY_POLICY_PARENTS_METHOD_OF_INFO_DELETION |
Checks if your privacy policy mentions how parents/caregivers/guardians can request the deletion of their child's personal information. |
PRIVACY_POLICY_PARENTS_METHOD_TO_INFO_REVIEW |
Checks if your privacy policy mentions how parents/caregivers/guardians can review their child's personal information. |
PRIVACY_POLICY_PARENTS_METHOD_TO_STOP_FURTHER_INFO_COLLECTION_USE |
Checks if your privacy policy explains how a parent/caregiver/guardian can stop the collection/use from their child's personal information. |
PRIVACY_POLICY_PARENTS_RIGHT_TO_INFO_DELETION |
Checks if your privacy policy mentions the right of a parent/caregiver/guardian to request the deletion of their child's personal information. |
PRIVACY_POLICY_PARENTS_RIGHT_TO_INFO_REVIEW |
Checks if your privacy policy mentions the right of a parent/caregiver/guardian to review their child's personal information. |
PRIVACY_POLICY_PARENTS_RIGHT_TO_STOP_FURTHER_INFO_COLLECTION_USE |
Checks if your privacy policy mentions the right of a parent/caregiver/guardian to stop collection/use from their child's personal information. |
PRIVACY_POLICY_PSL_APPROXIMATE_LOCATION |
Checks if your privacy policy mentions collection of your users' approximate location if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_PRECISE_LOCATION |
Checks if your privacy policy mentions collection of your users' precise location if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_NAME |
Checks if your privacy policy mentions collection of your users' personal names if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_EMAIL_ADDRESS |
Checks if your privacy policy mentions collection of your users' email addresses if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_USER_IDENTIFIERS |
Checks if your privacy policy mentions collection of your users' user IDs if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_ADDRESS |
Checks if your privacy policy mentions collection of your users' physical addresses if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_PHONE_NUMBER |
Checks if your privacy policy mentions collection of your users' phone numbers if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_RACE_AND_ETHNICITY |
Checks if your privacy policy mentions collection of your users' race or ethnicity if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_CREDIT_SCORE |
Checks if your privacy policy mentions collection of your users' credit score if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_PURCHASE_HISTORY |
Checks if your privacy policy mentions collection of your users' purchase history if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_HEALTH_INFO |
Checks if your privacy policy mentions collection of your users' health info if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_FITNESS_INFO |
Checks if your privacy policy mentions collection of your users' fitness info if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_EMAIL_MESSAGES |
Checks if your privacy policy mentions collection of your users' emails if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_TEXT_MESSAGES |
Checks if your privacy policy mentions collection of your users' text messages if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_PHOTOS |
Checks if your privacy policy mentions collection of your users' photos if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_VIDEOS |
Checks if your privacy policy mentions collection of your users' videos if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_MUSIC_FILES |
Checks if your privacy policy mentions collection of your users' music files if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_VOICE_OR_SOUND_RECORDINGS |
Checks if your privacy policy mentions collection of your users' voice or sound recordings if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_FILES_AND_DOCS |
Checks if your privacy policy mentions collection of your users' files or documents if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_CALENDAR_EVENTS |
Checks if your privacy policy mentions collection of your users' calendar events if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_CONTACTS |
Checks if your privacy policy mentions collection of your users' contacts if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_APP_INTERACTIONS |
Checks if your privacy policy mentions collection of your users' app interactions if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_IN_APP_SEARCH_HISTORY |
Checks if your privacy policy mentions collection of your users' in-app search history if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_WEB_BROWSING_HISTORY |
Checks if your privacy policy mentions collection of your users' web browsing history if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_INSTALLED_APPS |
Checks if your privacy policy mentions collection of your users' installed apps if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_CRASH_LOGS |
Checks if your privacy policy mentions collection of your users' crash logs if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_DIAGNOSTICS |
Checks if your privacy policy mentions collection of your users' performance diagnostics if this data type is declared in your Play Data Safety Section. |
PRIVACY_POLICY_PSL_DEVICE_OR_OTHER_IDS |
Checks if your privacy policy mentions collection of your users' device or other IDs if this data type is declared in your Play Data Safety Section. |
DATA_MONITORING_NEW_ENDPOINT |
Checks if there is a new endpoint we've recently detected. Because this check accounts for flakiness, it may fail for several weeks even if the endpoint is not detected in the current report. |
DATA_MONITORING_NEW_PERMISSION |
Checks if there is a new permission we've recently detected. Because this check accounts for flakiness, it may fail for several weeks even if the permission is not detected in the current report. |
DATA_MONITORING_NEW_DATA_TYPE |
Checks if there is a new data type we've recently detected. Because this check accounts for flakiness, it may fail for several weeks even if the data type is not detected in the current report. |
DATA_MONITORING_NEW_SDK |
Checks if there is a new SDK we've recently detected. Because this check accounts for flakiness, it may fail for several weeks even if the SDK is not detected in the current report. |
DATA_MONITORING_ENCRYPTION |
Checks if there is any endpoint contacted using HTTP protocol instead of HTTPS. If no protocol is found in the URL, the endpoint is not considered for analysis. |
DATA_MONITORING_NEW_DATA_TYPE_VERSION_DIFF |
Checks if new data types have been detected since a specific app version. |
DATA_MONITORING_NEW_ENDPOINT_VERSION_DIFF |
Checks if new endpoints have been detected since a specific app version. |
DATA_MONITORING_NEW_PERMISSION_VERSION_DIFF |
Checks if new permissions have been detected since a specific app version. |
DATA_MONITORING_NEW_SDK_VERSION_DIFF |
Checks if new SDKs have been detected since a specific app version. |
DATA_MONITORING_SDKS_DENYLIST_VIOLATION |
Checks if any SDKs were detected that are specified in the denylist. |
DATA_MONITORING_PERMISSIONS_DENYLIST_VIOLATION |
Checks if any permissions were detected that are specified in the denylist. |
DATA_MONITORING_ENDPOINTS_DENYLIST_VIOLATION |
Checks if any endpoints were detected that are specified in the denylist. |
DATA_MONITORING_OUTDATED_SDK_VERSION |
Checks if there are any outdated SDKs. |
DATA_MONITORING_CRITICAL_SDK_ISSUE |
Checks if there are any SDKs with critical issues. |
CheckSeverity
Categorizes the urgency of a check.
Enums | |
---|---|
CHECK_SEVERITY_UNSPECIFIED |
Not specified. |
PRIORITY |
Important privacy issue. |
POTENTIAL |
Potential privacy issue. |
OPPORTUNITY |
Opportunity to improve privacy coverage. |
CheckState
Indicates the state of a check.
Enums | |
---|---|
CHECK_STATE_UNSPECIFIED |
Not specified. |
PASSED |
The check passed. |
FAILED |
The check failed. |
UNCHECKED |
The check was not run. |
CheckStateMetadata
Additional information about the check state in relation to past reports.
JSON representation |
---|
{
"firstFailingTime": string,
"lastFailingTime": string,
"badges": [
enum ( |
Fields | |
---|---|
firstFailingTime |
The time when the check first started failing. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
lastFailingTime |
The last time the check failed. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
badges[] |
Indicators related to the check state. |
CheckStateBadge
Indicators related to the check state.
Enums | |
---|---|
CHECK_STATE_BADGE_UNSPECIFIED |
Not specified. |
NEWLY_FAILING |
The check is newly failing, i.e. now failing but previously passing. |
RECENTLY_FAILING |
The check is currently failing and first started failing continuously within the last 28 days. |
RESOLVED |
The check is newly passing, i.e. now passing but previously failing. |
CheckCitation
Regulation or policy that serves as the legal basis for the check.
JSON representation |
---|
{
"type": enum ( |
Fields | |
---|---|
type |
Citation type. |
CitationType
Citation types for checks.
Enums | |
---|---|
CITATION_TYPE_UNSPECIFIED |
Not specified. |
COPPA |
Children's Online Privacy Protection Act. |
GDPR |
General Data Protection Regulation. |
FERPA |
Family Educational Rights and Privacy Act. |
CAL_OPPA |
The California Online Privacy Protection Act. |
CCPA |
California Consumer Privacy Act. |
SOPIPA |
Student Online Personal Information Protection Act. |
LGPD |
Lei Geral de Proteção de Dados. |
CPRA |
California Consumer Privacy Act. |
VCDPA |
Virginia Consumer Data Protection Act. |
GOOGLE_PLAY_POLICY |
Google Play Policy. |
APP_STORE_POLICY |
App Store Policy. |
CPA |
Colorado Privacy Act. |
CTDPA |
Connecticut Data Privacy Act. |
UCPA |
Utah Consumer Privacy Act. |
PIPEDA |
Personal Information Protection and Electronic Documents Act. |
ALBERTA_PIPA |
Alberta (Canada) Personal Information Protection Act. |
QUEBEC_ACT |
Quebec: Act Respecting the Protection of Personal Information in the Private Sector. |
QUEBEC_BILL_64 |
Quebec Bill 64: An Act to Modernize Legislative Provisions as Regards the Protection of Personal Information. |
CHINA_PIPL |
China Personal Information Protection Law. |
CheckEvidence
Evidence for a check.
JSON representation |
---|
{ "privacyPolicyTexts": [ { object ( |
Fields | |
---|---|
privacyPolicyTexts[] |
Evidence collected from your privacy policy(s). |
dataTypes[] |
Evidence concerning data types found in your app. |
endpoints[] |
Evidence concerning endpoints that were contacted by your app. |
permissions[] |
Evidence concerning permissions that were found in your app. |
sdks[] |
Evidence concerning SDKs that were found in your app. |
dataSecurity |
Evidence concerning data security. |
sdkIssues[] |
Evidence concerning SDK issues. |
endpointRestrictionViolations[] |
Evidence collected from endpoint restriction violation analysis. |
permissionRestrictionViolations[] |
Evidence collected from permission restriction violation analysis. |
sdkRestrictionViolations[] |
Evidence collected from SDK restriction violation analysis. |
CheckPrivacyPolicyTextEvidence
Evidence collected from your privacy policy(s).
JSON representation |
---|
{
"policyFragment": {
object ( |
Fields | |
---|---|
policyFragment |
The privacy policy fragment that was used during the check. |
PolicyFragment
Information about a policy fragment.
JSON representation |
---|
{ "sourceUri": string, "htmlContent": string } |
Fields | |
---|---|
sourceUri |
Policy URL. |
htmlContent |
HTML content. |
CheckDataTypeEvidence
Evidence concerning a data type that was found in your app.
JSON representation |
---|
{ "dataType": enum ( |
Fields | |
---|---|
dataType |
The data type that was found in your app. |
dataTypeEvidence |
Evidence collected about the data type. |
DataType
Types of data used by your app.
Enums | |
---|---|
DATA_TYPE_UNSPECIFIED |
Not specified. |
DATA_TYPE_APPROXIMATE_LOCATION |
User or device physical location to an area greater than or equal to 3 square kilometers, such as the city a user is in, or location provided by Android's ACCESS_COARSE_LOCATION permission. |
DATA_TYPE_PRECISE_LOCATION |
User or device physical location within an area less than 3 square kilometers, such as location provided by Android's ACCESS_FINE_LOCATION permission. |
DATA_TYPE_PERSONAL_NAME |
How a user refers to themselves, such as their first or last name, or nickname. |
DATA_TYPE_EMAIL_ADDRESS |
A user's email address. |
DATA_TYPE_USER_IDS |
Identifiers that relate to an identifiable person. For example, an account ID, account number, or account name. |
DATA_TYPE_PHYSICAL_ADDRESS |
A user's address, such as a mailing or home address. |
DATA_TYPE_PHONE_NUMBER |
A user's phone number. |
DATA_TYPE_RACE_AND_ETHNICITY |
Information about a user's race or ethnicity. |
DATA_TYPE_POLITICAL_OR_RELIGIOUS_BELIEFS |
Information about a user's political or religious beliefs. |
DATA_TYPE_SEXUAL_ORIENTATION |
Information about a user's sexual orientation. |
DATA_TYPE_OTHER_PERSONAL_INFO |
Any other personal information such as date of birth, gender identity, veteran status, etc. |
DATA_TYPE_PAYMENT_INFO |
Information about a user's financial accounts such as credit card number. |
DATA_TYPE_PURCHASE_HISTORY |
Information about purchases or transactions a user has made. |
DATA_TYPE_CREDIT_SCORE |
Information about a user's credit score. |
DATA_TYPE_OTHER_FINANCIAL_INFO |
Any other financial information such as user salary or debts. |
DATA_TYPE_HEALTH_INFO |
Information about a user's health, such as medical records or symptoms. |
DATA_TYPE_FITNESS_INFO |
Information about a user's fitness, such as exercise or other physical activity. |
DATA_TYPE_EMAILS |
A user's emails including the email subject line, sender, recipients, and the content of the email. |
DATA_TYPE_TEXT_MESSAGES |
A user's text messages including the sender, recipients, and the content of the message. |
DATA_TYPE_PHOTOS |
A user's photos. |
DATA_TYPE_VIDEOS |
A user's videos. |
DATA_TYPE_VOICE_OR_SOUND_RECORDINGS |
A user's voice such as a voicemail or a sound recording. |
DATA_TYPE_MUSIC_FILES |
A user's music files. |
DATA_TYPE_OTHER_AUDIO_FILES |
Any other user-created or user-provided audio files. |
DATA_TYPE_FILES_AND_DOCS |
A user's files or documents, or information about their files or documents such as file names. |
DATA_TYPE_CALENDAR_EVENTS |
Information from a user's calendar such as events, event notes, and attendees. |
DATA_TYPE_CONTACTS |
Information about the user’s contacts such as contact names, message history, and social graph information like usernames, contact recency, contact frequency, interaction duration and call history. |
DATA_TYPE_APP_INTERACTIONS |
Information about how a user interacts with your app, such as the number of page views or taps. |
DATA_TYPE_IN_APP_SEARCH_HISTORY |
Information about what a user has searched for in your app. |
DATA_TYPE_INSTALLED_APPS |
Inventory of apps or packages installed on the user’s device. |
DATA_TYPE_OTHER_USER_GENERATED_CONTENT |
Any other user-generated content not listed here, or in any other section. For example, user bios, notes, or open-ended responses. |
DATA_TYPE_OTHER_ACTIONS |
Any other user activity or actions in-app not listed here such as gameplay, likes, and dialog options. |
DATA_TYPE_WEB_BROWSING_HISTORY |
Information about the websites a user has visited. |
DATA_TYPE_CRASH_LOGS |
Crash log data from your app. For example, the number of times your app has crashed, stack traces, or other information directly related to a crash. |
DATA_TYPE_PERFORMANCE_DIAGNOSTICS |
Information about the performance of your app. For example battery life, loading time, latency, framerate, or any technical diagnostics. |
DATA_TYPE_OTHER_APP_PERFORMANCE_DATA |
Any other app performance data not listed here. |
DATA_TYPE_DEVICE_OR_OTHER_IDS |
Identifiers that relate to an individual device, browser or app. For example, an IMEI number, MAC address, Widevine Device ID, Firebase installation ID, or advertising identifier. |
DataTypeEvidence
Evidence collected about a data type.
JSON representation |
---|
{ "endpoints": [ { object ( |
Fields | |
---|---|
endpoints[] |
List of endpoints the data type was sent to. |
permissions[] |
List of included permissions that imply collection of the data type. |
privacyPolicyTexts[] |
List of privacy policy texts that imply collection of the data type. |
DataTypeEndpointEvidence
Evidence based on an endpoint that data was sent to.
JSON representation |
---|
{ "exfiltratedDataType": enum ( |
Fields | |
---|---|
exfiltratedDataType |
Type of data that was exfiltrated. |
endpointDetails[] |
Endpoints the data type was sent to. |
attributedSdks[] |
Set of SDKs that are attributed to the exfiltration. |
ExfiltratedDataType
Type of data that was exfiltrated.
Enums | |
---|---|
EXFILTRATED_DATA_TYPE_UNSPECIFIED |
Not specified. |
EXFILTRATED_DATA_TYPE_PHONE_NUMBER |
The user's phone number. |
EXFILTRATED_DATA_TYPE_PRECISE_LOCATION |
The user's precise location. |
EXFILTRATED_DATA_TYPE_CONTACT_NAME |
Name of one or more contacts from the user's phone. |
EXFILTRATED_DATA_TYPE_CONTACT_EMAIL |
Email of one or more contacts from the user's phone. |
EXFILTRATED_DATA_TYPE_CONTACT_PHONE_NUMBER |
Phone number of one or more contacts from the user's phone. |
EXFILTRATED_DATA_TYPE_INCOMING_TEXT_NUMBER |
Phone number of an incoming text message. |
EXFILTRATED_DATA_TYPE_INCOMING_TEXT_MESSAGE |
Content of an incoming text message. |
EXFILTRATED_DATA_TYPE_OUTGOING_TEXT_NUMBER |
Phone number of an outgoing text message. |
EXFILTRATED_DATA_TYPE_OUTGOING_TEXT_MESSAGE |
Content of an outgoing text message. |
EXFILTRATED_DATA_TYPE_ADVERTISING_ID |
Advertising ID. |
EXFILTRATED_DATA_TYPE_ANDROID_ID |
Android ID. |
EXFILTRATED_DATA_TYPE_IMEI |
IMEI. |
EXFILTRATED_DATA_TYPE_IMSI |
IMSI. |
EXFILTRATED_DATA_TYPE_SIM_SERIAL_NUMBER |
Sim serial number. |
EXFILTRATED_DATA_TYPE_SSID |
SSID: Service Set IDentifier, i.e. the network's name. |
EXFILTRATED_DATA_TYPE_ACCOUNT |
Information about the main account of the device. |
EXFILTRATED_DATA_TYPE_EXTERNAL_ACCOUNT |
Information about an external account, e.g. Facebook, Twitter. |
EXFILTRATED_DATA_TYPE_INSTALLED_PACKAGES |
One or more of the package names of apps on the device. |
EndpointDetails
Details of the endpoint the data type was sent to.
JSON representation |
---|
{
"endpoint": {
object ( |
Fields | |
---|---|
endpoint |
Endpoint the data type was sent to. |
Endpoint
Information about an endpoint.
JSON representation |
---|
{ "domain": string } |
Fields | |
---|---|
domain |
Domain name (e.g. ads.google.com). |
AttributedSdk
Details of SDK that is attributed to the exfiltration.
JSON representation |
---|
{
"sdk": {
object ( |
Fields | |
---|---|
sdk |
SDK that is attributed to the exfiltration. |
Sdk
Information about an SDK.
JSON representation |
---|
{ "id": string } |
Fields | |
---|---|
id |
SDK identifier. |
DataTypePermissionEvidence
Evidence based on the inclusion of a permission.
JSON representation |
---|
{
"permission": {
object ( |
Fields | |
---|---|
permission |
Permission declared by your app. |
Permission
Information about a permission.
JSON representation |
---|
{ "id": string } |
Fields | |
---|---|
id |
Permission identifier. |
DataTypePrivacyPolicyTextEvidence
Evidence based on information from the privacy policy.
JSON representation |
---|
{
"policyFragment": {
object ( |
Fields | |
---|---|
policyFragment |
The privacy policy fragment that implies collection of the data type. |
CheckEndpointEvidence
Evidence concerning an endpoint that was contacted by your app.
JSON representation |
---|
{
"endpoint": {
object ( |
Fields | |
---|---|
endpoint |
The endpoint that was contacted by your app. |
CheckPermissionEvidence
Evidence concerning a permission that was found in your app.
JSON representation |
---|
{
"permission": {
object ( |
Fields | |
---|---|
permission |
The permission that was found in your app. |
CheckSdkEvidence
Evidence conerning an SDK that was found in your app.
JSON representation |
---|
{
"sdk": {
object ( |
Fields | |
---|---|
sdk |
The SDK that was found in your app. |
CheckDataSecurityEvidence
Evidence concerning data security.
JSON representation |
---|
{
"dataInTransitInfo": [
{
object ( |
Fields | |
---|---|
dataInTransitInfo[] |
Evidence related to data in transit. |
DataInTransitInfo
Evidence related to data in transit detected in your app.
JSON representation |
---|
{ "uri": string } |
Fields | |
---|---|
uri |
The URL contacted by your app. This includes the protocol, domain, and URL parameters. |
CheckSdkIssueEvidence
Evidence concerning an SDK issue.
JSON representation |
---|
{
"sdk": {
object ( |
Fields | |
---|---|
sdk |
The SDK with an issue. |
sdkVersion |
The SDK version. |
CheckEndpointRestrictionViolationEvidence
Evidence collected from endpoint restriction violation analysis.
JSON representation |
---|
{
"endpointDetails": [
{
object ( |
Fields | |
---|---|
endpointDetails[] |
Endpoints in violation. |
EndpointDetails
Details of the endpoint in violation.
JSON representation |
---|
{
"endpoint": {
object ( |
Fields | |
---|---|
endpoint |
The endpoint in violation. |
CheckPermissionRestrictionViolationEvidence
Evidence collected from permission restriction violation analysis.
JSON representation |
---|
{
"permissionDetails": [
{
object ( |
Fields | |
---|---|
permissionDetails[] |
Permissions in violation. |
PermissionDetails
Details of the permission in violation.
JSON representation |
---|
{
"permission": {
object ( |
Fields | |
---|---|
permission |
The permission in violation. |
CheckSdkRestrictionViolationEvidence
Evidence collected from SDK restriction violation analysis.
JSON representation |
---|
{
"sdkDetails": [
{
object ( |
Fields | |
---|---|
sdkDetails[] |
SDKs in violation. |
SdkDetails
Details of the SDK in violation.
JSON representation |
---|
{
"sdk": {
object ( |
Fields | |
---|---|
sdk |
The SDK in violation. |
DataMonitoring
Represents the data monitoring section of the report.
JSON representation |
---|
{ "endpoints": [ { object ( |
Fields | |
---|---|
endpoints[] |
Endpoints that were found by dynamic analysis of your app. |
permissions[] |
Permissions that your app uses. |
dataTypes[] |
Data types that your app shares or collects. |
sdks[] |
SDKs that your app uses. |
DataMonitoringEndpointResult
Information about an endpoint that was contacted by your app.
JSON representation |
---|
{ "metadata": { object ( |
Fields | |
---|---|
metadata |
Metadata about the result. |
endpoint |
The endpoint that was contacted by your app. |
hitCount |
The number of times this endpoint was contacted by your app. |
DataMonitoringResultMetadata
Information about a data monitoring result.
JSON representation |
---|
{
"badges": [
enum ( |
Fields | |
---|---|
badges[] |
Badges that apply to this result. |
lastDetectedAppVersion |
Your app's version name when this result was last detected within the last 8 weeks. If not set, it wasn't detected within the last 8 weeks. |
firstDetectedTime |
The timestamp when this result was first detected within the last 8 weeks. If not set, it wasn't detected within the last 8 weeks. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
lastDetectedTime |
The timestamp when this result was last detected within the last 8 weeks. If not set, it wasn't detected within the last 8 weeks. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
DataMonitoringResultBadge
Indicator badges for a data monitoring result.
Enums | |
---|---|
DATA_MONITORING_RESULT_BADGE_UNSPECIFIED |
Not specified. |
NEW |
Indicates a newly detected result in the data monitoring report. |
DataMonitoringPermissionResult
Information about a permission that was found in your app.
JSON representation |
---|
{ "metadata": { object ( |
Fields | |
---|---|
metadata |
Metadata about the result. |
permission |
The permission that was found in your app. |
DataMonitoringDataTypeResult
Information about a data type that was found in your app.
JSON representation |
---|
{ "metadata": { object ( |
Fields | |
---|---|
metadata |
Metadata about the result. |
dataType |
The data type that was shared or collected by your app. |
dataTypeEvidence |
Evidence collected about the data type. |
DataMonitoringSdkResult
Information about an SDK that was found in your app.
JSON representation |
---|
{ "metadata": { object ( |
Fields | |
---|---|
metadata |
Metadata about the result. |
sdk |
The SDK that was found in your app. |
Methods |
|
---|---|
|
Gets a report. |
|
Lists reports for the specified app. |