REST Resource: accounts.apps.reports

Resource: Report

Privacy report.

JSON representation 
{
  "name": string,
  "resultsUri": string,
  "appBundle": {
    object (AppBundle)
  },
  "checks": [
    {
      object (Check)
    }
  ],
  "dataMonitoring": {
    object (DataMonitoring)
  }
}
Fields
name

string

Resource name of the report.
resultsUri

string

A URL to view results.
appBundle

object (AppBundle)

Information about the analyzed app bundle.
checks[]

object (Check)

List of checks that were run on the app bundle.
dataMonitoring

object (DataMonitoring)

Information related to data monitoring.

AppBundle

Information about the analyzed app bundle.

JSON representation 
{
  "bundleId": string,
  "version": string,
  "versionId": string,
  "releaseType": enum (AppBundleReleaseType),
  "codeReferenceId": string
}
Fields
bundleId

string

Unique id of the bundle. For example: "com.google.Gmail".
version

string

The user-visible version of the bundle such as the Android versionName or iOS CFBundleShortVersionString. For example: "7.21.1".
versionId

string

The version used throughout the operating system and store to identify the build such as the Android versionCode or iOS CFBundleVersion.
releaseType

enum (AppBundleReleaseType)

Identifies the type of release.
codeReferenceId

string

Git commit hash or changelist number associated with the release.

AppBundleReleaseType

Identifies the type of release. This enum may include more values in the future.

Enums
APP_BUNDLE_RELEASE_TYPE_UNSPECIFIED Not specified.
PUBLIC Published production bundle.
PRE_RELEASE Pre-release bundle.

Check

A check that was run on your app.

JSON representation 
{
  "type": enum (CheckType),
  "severity": enum (CheckSeverity),
  "state": enum (CheckState),
  "stateMetadata": {
    object (CheckStateMetadata)
  },
  "regionCodes": [
    string
  ],
  "citations": [
    {
      object (CheckCitation)
    }
  ],
  "evidence": {
    object (CheckEvidence)
  }
}
Fields
type

enum (CheckType)

The type of check that was run. A type will only appear once in a report's list of checks.
severity

enum (CheckSeverity)

The urgency or risk level of the check.
state

enum (CheckState)

The result after running the check.
stateMetadata

object (CheckStateMetadata)

Additional information about the check state in relation to past reports.
regionCodes[]

string

Regions that are impacted by the check. For more info, see https://google.aip.dev/143#countries-and-regions.
citations[]

object (CheckCitation)

Regulations and policies that serve as the legal basis for the check.
evidence

object (CheckEvidence)

Evidence that substantiates the check result.

CheckType

The unique identifier for a check within a report.

Enums
CHECK_TYPE_UNSPECIFIED Not specified.
PRIVACY_POLICY_UPDATE_DATE_RECENT Checks that your privacy policy has been updated recently.
PRIVACY_POLICY_GDPR_GENERAL_RULES Checks if your privacy policy references rights under GDPR for users in the EU.
PRIVACY_POLICY_CCPA_GENERAL_RULES Checks if your privacy policy references rights under the CCPA.
PRIVACY_POLICY_COLLECTION_CATEGORIES_DATA_NOTICE Checks if your privacy policy mentions the categories of personal data that are collected.
PRIVACY_POLICY_PROCESSING_PURPOSE_DATA_NOTICE Checks if your privacy policy explains why personal data is processed.
PRIVACY_POLICY_SHARING_CATEGORIES_DATA_NOTICE Checks if your privacy policy includes information about third-party sharing of personal data.
PRIVACY_POLICY_DATA_RETENTION_NOTICE Checks if your privacy policy describes your data retention practices.
PRIVACY_POLICY_CONTACT_DETAILS_NOTICE Checks if contact information is included in your privacy policy.
PRIVACY_POLICY_CHILDREN_GENERAL_RULES Checks if information about requirements related to children is included in your privacy policy.
PRIVACY_POLICY_DATA_TYPE_PHONE_NUMBER Checks if the Phone Number data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_USER_ACCOUNT_INFO Checks if the User Account Info data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_PRECISE_LOCATION Checks if the Precise Location data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_DEVICE_ID Checks if the Device ID data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_APPS_ON_DEVICE Checks if the Apps on Device data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_CONTACTS Checks if the Contacts data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_TEXT_MESSAGES Checks if the Text Messages data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_PII Checks if the PII data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_PII_CATEGORIES Checks if the PII Categories data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_DATA_TYPE_HEALTH_AND_BIOMETRIC Checks if the Health and Biometric data type declaration in your privacy policy matches usage.
PRIVACY_POLICY_BRAZIL_LGPD_GENERAL_RULES Checks if your privacy policy references rights under LGPD for users in Brazil.
PRIVACY_POLICY_VIRGINIA_VCDPA_GENERAL_RULES Checks if your privacy policy references rights under VCDPA for users in Virginia.
PRIVACY_POLICY_AFFILIATION_MENTION Checks if your privacy policy identifies your company or app name(s).
PRIVACY_POLICY_RIGHT_TO_DELETE_NOTICE Checks if your privacy policy mentions your users' right to delete their data.
PRIVACY_POLICY_RIGHT_TO_ACCESS_NOTICE Checks if your privacy policy mentions your users' right to access the data held about them.
PRIVACY_POLICY_RIGHT_TO_RECTIFICATION_NOTICE Checks if your privacy policy mentions your users' right to correct inaccuracies within their data.
PRIVACY_POLICY_RIGHT_TO_KNOW_ABOUT_SELLING_NOTICE Checks if your privacy policy mentions your users' right to know about information selling.
PRIVACY_POLICY_RIGHT_TO_KNOW_ABOUT_SHARING_NOTICE Checks if your privacy policy mentions your users' right to know about information sharing.
PRIVACY_POLICY_RIGHT_TO_OPT_OUT_FROM_SELLING_NOTICE Checks if your privacy policy mentions your users' right to opt out from information selling.
PRIVACY_POLICY_METHOD_TO_OPT_OUT_FROM_SELLING_OR_SHARING_NOTICE Checks if your privacy policy explains how your users opt out from the selling or sharing of their data.
PRIVACY_POLICY_DATA_CONTROLLER_IDENTITY Checks if your privacy policy provides the name and contact information for your data controller.
PRIVACY_POLICY_DPO_CONTACT_DETAILS Checks if your privacy policy provides the name and contact information for your Data Protection Officer.
PRIVACY_POLICY_RIGHT_TO_LODGE_A_COMPLAINT Checks if your privacy policy mentions your users' right to lodge a complaint with a supervisory authority.
PRIVACY_POLICY_CHILDREN_INFO_COLLECTION Checks if your privacy policy mentions what personal information is collected from children.
PRIVACY_POLICY_CHILDREN_INFO_USAGE_PURPOSES Checks if your privacy policy mentions why you collect personal information from children.
PRIVACY_POLICY_CHILDREN_INFO_DISCLOSURE_PRACTICES Checks if your privacy policy mentions what personal information from children is shared with third parties.
PRIVACY_POLICY_CHILDREN_INFO_PUBLICITY Checks if your privacy policy mentions whether your app allows children to make their personal information publicly available.
PRIVACY_POLICY_PARENTS_METHOD_OF_INFO_DELETION Checks if your privacy policy mentions how parents/caregivers/guardians can request the deletion of their child's personal information.
PRIVACY_POLICY_PARENTS_METHOD_TO_INFO_REVIEW Checks if your privacy policy mentions how parents/caregivers/guardians can review their child's personal information.
PRIVACY_POLICY_PARENTS_METHOD_TO_STOP_FURTHER_INFO_COLLECTION_USE Checks if your privacy policy explains how a parent/caregiver/guardian can stop the collection/use from their child's personal information.
PRIVACY_POLICY_PARENTS_RIGHT_TO_INFO_DELETION Checks if your privacy policy mentions the right of a parent/caregiver/guardian to request the deletion of their child's personal information.
PRIVACY_POLICY_PARENTS_RIGHT_TO_INFO_REVIEW Checks if your privacy policy mentions the right of a parent/caregiver/guardian to review their child's personal information.
PRIVACY_POLICY_PARENTS_RIGHT_TO_STOP_FURTHER_INFO_COLLECTION_USE Checks if your privacy policy mentions the right of a parent/caregiver/guardian to stop collection/use from their child's personal information.
PRIVACY_POLICY_PSL_APPROXIMATE_LOCATION Checks if your privacy policy mentions collection of your users' approximate location if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_PRECISE_LOCATION Checks if your privacy policy mentions collection of your users' precise location if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_NAME Checks if your privacy policy mentions collection of your users' personal names if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_EMAIL_ADDRESS Checks if your privacy policy mentions collection of your users' email addresses if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_USER_IDENTIFIERS Checks if your privacy policy mentions collection of your users' user IDs if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_ADDRESS Checks if your privacy policy mentions collection of your users' physical addresses if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_PHONE_NUMBER Checks if your privacy policy mentions collection of your users' phone numbers if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_RACE_AND_ETHNICITY Checks if your privacy policy mentions collection of your users' race or ethnicity if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_CREDIT_SCORE Checks if your privacy policy mentions collection of your users' credit score if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_PURCHASE_HISTORY Checks if your privacy policy mentions collection of your users' purchase history if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_HEALTH_INFO Checks if your privacy policy mentions collection of your users' health info if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_FITNESS_INFO Checks if your privacy policy mentions collection of your users' fitness info if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_EMAIL_MESSAGES Checks if your privacy policy mentions collection of your users' emails if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_TEXT_MESSAGES Checks if your privacy policy mentions collection of your users' text messages if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_PHOTOS Checks if your privacy policy mentions collection of your users' photos if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_VIDEOS Checks if your privacy policy mentions collection of your users' videos if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_MUSIC_FILES Checks if your privacy policy mentions collection of your users' music files if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_VOICE_OR_SOUND_RECORDINGS Checks if your privacy policy mentions collection of your users' voice or sound recordings if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_FILES_AND_DOCS Checks if your privacy policy mentions collection of your users' files or documents if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_CALENDAR_EVENTS Checks if your privacy policy mentions collection of your users' calendar events if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_CONTACTS Checks if your privacy policy mentions collection of your users' contacts if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_APP_INTERACTIONS Checks if your privacy policy mentions collection of your users' app interactions if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_IN_APP_SEARCH_HISTORY Checks if your privacy policy mentions collection of your users' in-app search history if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_WEB_BROWSING_HISTORY Checks if your privacy policy mentions collection of your users' web browsing history if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_INSTALLED_APPS Checks if your privacy policy mentions collection of your users' installed apps if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_CRASH_LOGS Checks if your privacy policy mentions collection of your users' crash logs if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_DIAGNOSTICS Checks if your privacy policy mentions collection of your users' performance diagnostics if this data type is declared in your Play Data Safety Section.
PRIVACY_POLICY_PSL_DEVICE_OR_OTHER_IDS Checks if your privacy policy mentions collection of your users' device or other IDs if this data type is declared in your Play Data Safety Section.
DATA_MONITORING_NEW_ENDPOINT

Checks if there is a new endpoint we've recently detected.

Because this check accounts for flakiness, it may fail for several weeks even if the endpoint is not detected in the current report.
DATA_MONITORING_NEW_PERMISSION

Checks if there is a new permission we've recently detected.

Because this check accounts for flakiness, it may fail for several weeks even if the permission is not detected in the current report.
DATA_MONITORING_NEW_DATA_TYPE

Checks if there is a new data type we've recently detected.

Because this check accounts for flakiness, it may fail for several weeks even if the data type is not detected in the current report.
DATA_MONITORING_NEW_SDK

Checks if there is a new SDK we've recently detected.

Because this check accounts for flakiness, it may fail for several weeks even if the SDK is not detected in the current report.
DATA_MONITORING_ENCRYPTION Checks if there is any endpoint contacted using HTTP protocol instead of HTTPS. If no protocol is found in the URL, the endpoint is not considered for analysis.
DATA_MONITORING_NEW_DATA_TYPE_VERSION_DIFF Checks if new data types have been detected since a specific app version.
DATA_MONITORING_NEW_ENDPOINT_VERSION_DIFF Checks if new endpoints have been detected since a specific app version.
DATA_MONITORING_NEW_PERMISSION_VERSION_DIFF Checks if new permissions have been detected since a specific app version.
DATA_MONITORING_NEW_SDK_VERSION_DIFF Checks if new SDKs have been detected since a specific app version.
DATA_MONITORING_SDKS_DENYLIST_VIOLATION Checks if any SDKs were detected that are specified in the denylist.
DATA_MONITORING_PERMISSIONS_DENYLIST_VIOLATION Checks if any permissions were detected that are specified in the denylist.
DATA_MONITORING_ENDPOINTS_DENYLIST_VIOLATION Checks if any endpoints were detected that are specified in the denylist.
DATA_MONITORING_OUTDATED_SDK_VERSION Checks if there are any outdated SDKs.
DATA_MONITORING_CRITICAL_SDK_ISSUE Checks if there are any SDKs with critical issues.

CheckSeverity

Categorizes the urgency of a check.

Enums
CHECK_SEVERITY_UNSPECIFIED Not specified.
PRIORITY Important privacy issue.
POTENTIAL Potential privacy issue.
OPPORTUNITY Opportunity to improve privacy coverage.

CheckState

Indicates the state of a check.

Enums
CHECK_STATE_UNSPECIFIED Not specified.
PASSED The check passed.
FAILED The check failed.
UNCHECKED The check was not run.

CheckStateMetadata

Additional information about the check state in relation to past reports.

JSON representation 
{
  "firstFailingTime": string,
  "lastFailingTime": string,
  "badges": [
    enum (CheckStateBadge)
  ]
}
Fields
firstFailingTime

string (Timestamp format)

The time when the check first started failing.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
lastFailingTime

string (Timestamp format)

The last time the check failed.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
badges[]

enum (CheckStateBadge)

Indicators related to the check state.

CheckStateBadge

Indicators related to the check state.

Enums
CHECK_STATE_BADGE_UNSPECIFIED Not specified.
NEWLY_FAILING The check is newly failing, i.e. now failing but previously passing.
RECENTLY_FAILING The check is currently failing and first started failing continuously within the last 28 days.
RESOLVED The check is newly passing, i.e. now passing but previously failing.

CheckCitation

Regulation or policy that serves as the legal basis for the check.

JSON representation 
{
  "type": enum (CitationType)
}
Fields
type

enum (CitationType)

Citation type.

CitationType

Citation types for checks.

Enums
CITATION_TYPE_UNSPECIFIED Not specified.
COPPA Children's Online Privacy Protection Act.
GDPR General Data Protection Regulation.
FERPA Family Educational Rights and Privacy Act.
CAL_OPPA The California Online Privacy Protection Act.
CCPA California Consumer Privacy Act.
SOPIPA Student Online Personal Information Protection Act.
LGPD Lei Geral de Proteção de Dados.
CPRA California Consumer Privacy Act.
VCDPA Virginia Consumer Data Protection Act.
GOOGLE_PLAY_POLICY Google Play Policy.
APP_STORE_POLICY App Store Policy.
CPA Colorado Privacy Act.
CTDPA Connecticut Data Privacy Act.
UCPA Utah Consumer Privacy Act.
PIPEDA Personal Information Protection and Electronic Documents Act.
ALBERTA_PIPA Alberta (Canada) Personal Information Protection Act.
QUEBEC_ACT Quebec: Act Respecting the Protection of Personal Information in the Private Sector.
QUEBEC_BILL_64 Quebec Bill 64: An Act to Modernize Legislative Provisions as Regards the Protection of Personal Information.
CHINA_PIPL China Personal Information Protection Law.

CheckEvidence

Evidence for a check.

JSON representation 
{
  "privacyPolicyTexts": [
    {
      object (CheckPrivacyPolicyTextEvidence)
    }
  ],
  "dataTypes": [
    {
      object (CheckDataTypeEvidence)
    }
  ],
  "endpoints": [
    {
      object (CheckEndpointEvidence)
    }
  ],
  "permissions": [
    {
      object (CheckPermissionEvidence)
    }
  ],
  "sdks": [
    {
      object (CheckSdkEvidence)
    }
  ],
  "dataSecurity": {
    object (CheckDataSecurityEvidence)
  },
  "sdkIssues": [
    {
      object (CheckSdkIssueEvidence)
    }
  ],
  "endpointRestrictionViolations": [
    {
      object (CheckEndpointRestrictionViolationEvidence)
    }
  ],
  "permissionRestrictionViolations": [
    {
      object (CheckPermissionRestrictionViolationEvidence)
    }
  ],
  "sdkRestrictionViolations": [
    {
      object (CheckSdkRestrictionViolationEvidence)
    }
  ]
}
Fields
privacyPolicyTexts[]

object (CheckPrivacyPolicyTextEvidence)

Evidence collected from your privacy policy(s).
dataTypes[]

object (CheckDataTypeEvidence)

Evidence concerning data types found in your app.
endpoints[]

object (CheckEndpointEvidence)

Evidence concerning endpoints that were contacted by your app.
permissions[]

object (CheckPermissionEvidence)

Evidence concerning permissions that were found in your app.
sdks[]

object (CheckSdkEvidence)

Evidence concerning SDKs that were found in your app.
dataSecurity

object (CheckDataSecurityEvidence)

Evidence concerning data security.
sdkIssues[]

object (CheckSdkIssueEvidence)

Evidence concerning SDK issues.
endpointRestrictionViolations[]

object (CheckEndpointRestrictionViolationEvidence)

Evidence collected from endpoint restriction violation analysis.
permissionRestrictionViolations[]

object (CheckPermissionRestrictionViolationEvidence)

Evidence collected from permission restriction violation analysis.
sdkRestrictionViolations[]

object (CheckSdkRestrictionViolationEvidence)

Evidence collected from SDK restriction violation analysis.

CheckPrivacyPolicyTextEvidence

Evidence collected from your privacy policy(s).

JSON representation 
{
  "policyFragment": {
    object (PolicyFragment)
  }
}
Fields
policyFragment

object (PolicyFragment)

The privacy policy fragment that was used during the check.

PolicyFragment

Information about a policy fragment.

JSON representation 
{
  "sourceUri": string,
  "htmlContent": string
}
Fields
sourceUri

string

Policy URL.
htmlContent

string

HTML content.

CheckDataTypeEvidence

Evidence concerning a data type that was found in your app.

JSON representation 
{
  "dataType": enum (DataType),
  "dataTypeEvidence": {
    object (DataTypeEvidence)
  }
}
Fields
dataType

enum (DataType)

The data type that was found in your app.
dataTypeEvidence

object (DataTypeEvidence)

Evidence collected about the data type.

DataType

Types of data used by your app.

Enums
DATA_TYPE_UNSPECIFIED Not specified.
DATA_TYPE_APPROXIMATE_LOCATION User or device physical location to an area greater than or equal to 3 square kilometers, such as the city a user is in, or location provided by Android's ACCESS_COARSE_LOCATION permission.
DATA_TYPE_PRECISE_LOCATION User or device physical location within an area less than 3 square kilometers, such as location provided by Android's ACCESS_FINE_LOCATION permission.
DATA_TYPE_PERSONAL_NAME How a user refers to themselves, such as their first or last name, or nickname.
DATA_TYPE_EMAIL_ADDRESS A user's email address.
DATA_TYPE_USER_IDS Identifiers that relate to an identifiable person. For example, an account ID, account number, or account name.
DATA_TYPE_PHYSICAL_ADDRESS A user's address, such as a mailing or home address.
DATA_TYPE_PHONE_NUMBER A user's phone number.
DATA_TYPE_RACE_AND_ETHNICITY Information about a user's race or ethnicity.
DATA_TYPE_POLITICAL_OR_RELIGIOUS_BELIEFS Information about a user's political or religious beliefs.
DATA_TYPE_SEXUAL_ORIENTATION Information about a user's sexual orientation.
DATA_TYPE_OTHER_PERSONAL_INFO Any other personal information such as date of birth, gender identity, veteran status, etc.
DATA_TYPE_PAYMENT_INFO Information about a user's financial accounts such as credit card number.
DATA_TYPE_PURCHASE_HISTORY Information about purchases or transactions a user has made.
DATA_TYPE_CREDIT_SCORE Information about a user's credit score.
DATA_TYPE_OTHER_FINANCIAL_INFO Any other financial information such as user salary or debts.
DATA_TYPE_HEALTH_INFO Information about a user's health, such as medical records or symptoms.
DATA_TYPE_FITNESS_INFO Information about a user's fitness, such as exercise or other physical activity.
DATA_TYPE_EMAILS A user's emails including the email subject line, sender, recipients, and the content of the email.
DATA_TYPE_TEXT_MESSAGES A user's text messages including the sender, recipients, and the content of the message.
DATA_TYPE_PHOTOS A user's photos.
DATA_TYPE_VIDEOS A user's videos.
DATA_TYPE_VOICE_OR_SOUND_RECORDINGS A user's voice such as a voicemail or a sound recording.
DATA_TYPE_MUSIC_FILES A user's music files.
DATA_TYPE_OTHER_AUDIO_FILES Any other user-created or user-provided audio files.
DATA_TYPE_FILES_AND_DOCS A user's files or documents, or information about their files or documents such as file names.
DATA_TYPE_CALENDAR_EVENTS Information from a user's calendar such as events, event notes, and attendees.
DATA_TYPE_CONTACTS Information about the user’s contacts such as contact names, message history, and social graph information like usernames, contact recency, contact frequency, interaction duration and call history.
DATA_TYPE_APP_INTERACTIONS Information about how a user interacts with your app, such as the number of page views or taps.
DATA_TYPE_IN_APP_SEARCH_HISTORY Information about what a user has searched for in your app.
DATA_TYPE_INSTALLED_APPS Inventory of apps or packages installed on the user’s device.
DATA_TYPE_OTHER_USER_GENERATED_CONTENT Any other user-generated content not listed here, or in any other section. For example, user bios, notes, or open-ended responses.
DATA_TYPE_OTHER_ACTIONS Any other user activity or actions in-app not listed here such as gameplay, likes, and dialog options.
DATA_TYPE_WEB_BROWSING_HISTORY Information about the websites a user has visited.
DATA_TYPE_CRASH_LOGS Crash log data from your app. For example, the number of times your app has crashed, stack traces, or other information directly related to a crash.
DATA_TYPE_PERFORMANCE_DIAGNOSTICS Information about the performance of your app. For example battery life, loading time, latency, framerate, or any technical diagnostics.
DATA_TYPE_OTHER_APP_PERFORMANCE_DATA Any other app performance data not listed here.
DATA_TYPE_DEVICE_OR_OTHER_IDS Identifiers that relate to an individual device, browser or app. For example, an IMEI number, MAC address, Widevine Device ID, Firebase installation ID, or advertising identifier.

DataTypeEvidence

Evidence collected about a data type.

JSON representation 
{
  "endpoints": [
    {
      object (DataTypeEndpointEvidence)
    }
  ],
  "permissions": [
    {
      object (DataTypePermissionEvidence)
    }
  ],
  "privacyPolicyTexts": [
    {
      object (DataTypePrivacyPolicyTextEvidence)
    }
  ]
}
Fields
endpoints[]

object (DataTypeEndpointEvidence)

List of endpoints the data type was sent to.
permissions[]

object (DataTypePermissionEvidence)

List of included permissions that imply collection of the data type.
privacyPolicyTexts[]

object (DataTypePrivacyPolicyTextEvidence)

List of privacy policy texts that imply collection of the data type.

DataTypeEndpointEvidence

Evidence based on an endpoint that data was sent to.

JSON representation 
{
  "exfiltratedDataType": enum (ExfiltratedDataType),
  "endpointDetails": [
    {
      object (EndpointDetails)
    }
  ],
  "attributedSdks": [
    {
      object (AttributedSdk)
    }
  ]
}
Fields
exfiltratedDataType

enum (ExfiltratedDataType)

Type of data that was exfiltrated.
endpointDetails[]

object (EndpointDetails)

Endpoints the data type was sent to.
attributedSdks[]

object (AttributedSdk)

Set of SDKs that are attributed to the exfiltration.

ExfiltratedDataType

Type of data that was exfiltrated.

Enums
EXFILTRATED_DATA_TYPE_UNSPECIFIED Not specified.
EXFILTRATED_DATA_TYPE_PHONE_NUMBER The user's phone number.
EXFILTRATED_DATA_TYPE_PRECISE_LOCATION The user's precise location.
EXFILTRATED_DATA_TYPE_CONTACT_NAME Name of one or more contacts from the user's phone.
EXFILTRATED_DATA_TYPE_CONTACT_EMAIL Email of one or more contacts from the user's phone.
EXFILTRATED_DATA_TYPE_CONTACT_PHONE_NUMBER Phone number of one or more contacts from the user's phone.
EXFILTRATED_DATA_TYPE_INCOMING_TEXT_NUMBER Phone number of an incoming text message.
EXFILTRATED_DATA_TYPE_INCOMING_TEXT_MESSAGE Content of an incoming text message.
EXFILTRATED_DATA_TYPE_OUTGOING_TEXT_NUMBER Phone number of an outgoing text message.
EXFILTRATED_DATA_TYPE_OUTGOING_TEXT_MESSAGE Content of an outgoing text message.
EXFILTRATED_DATA_TYPE_ADVERTISING_ID Advertising ID.
EXFILTRATED_DATA_TYPE_ANDROID_ID Android ID.
EXFILTRATED_DATA_TYPE_IMEI IMEI.
EXFILTRATED_DATA_TYPE_IMSI IMSI.
EXFILTRATED_DATA_TYPE_SIM_SERIAL_NUMBER Sim serial number.
EXFILTRATED_DATA_TYPE_SSID SSID: Service Set IDentifier, i.e. the network's name.
EXFILTRATED_DATA_TYPE_ACCOUNT Information about the main account of the device.
EXFILTRATED_DATA_TYPE_EXTERNAL_ACCOUNT Information about an external account, e.g. Facebook, Twitter.
EXFILTRATED_DATA_TYPE_INSTALLED_PACKAGES One or more of the package names of apps on the device.

EndpointDetails

Details of the endpoint the data type was sent to.

JSON representation 
{
  "endpoint": {
    object (Endpoint)
  }
}
Fields
endpoint

object (Endpoint)

Endpoint the data type was sent to.

Endpoint

Information about an endpoint.

JSON representation 
{
  "domain": string
}
Fields
domain

string

Domain name (e.g. ads.google.com).

AttributedSdk

Details of SDK that is attributed to the exfiltration.

JSON representation 
{
  "sdk": {
    object (Sdk)
  }
}
Fields
sdk

object (Sdk)

SDK that is attributed to the exfiltration.

Sdk

Information about an SDK.

JSON representation 
{
  "id": string
}
Fields
id

string

SDK identifier.

DataTypePermissionEvidence

Evidence based on the inclusion of a permission.

JSON representation 
{
  "permission": {
    object (Permission)
  }
}
Fields
permission

object (Permission)

Permission declared by your app.

Permission

Information about a permission.

JSON representation 
{
  "id": string
}
Fields
id

string

Permission identifier.

DataTypePrivacyPolicyTextEvidence

Evidence based on information from the privacy policy.

JSON representation 
{
  "policyFragment": {
    object (PolicyFragment)
  }
}
Fields
policyFragment

object (PolicyFragment)

The privacy policy fragment that implies collection of the data type.

CheckEndpointEvidence

Evidence concerning an endpoint that was contacted by your app.

JSON representation 
{
  "endpoint": {
    object (Endpoint)
  }
}
Fields
endpoint

object (Endpoint)

The endpoint that was contacted by your app.

CheckPermissionEvidence

Evidence concerning a permission that was found in your app.

JSON representation 
{
  "permission": {
    object (Permission)
  }
}
Fields
permission

object (Permission)

The permission that was found in your app.

CheckSdkEvidence

Evidence conerning an SDK that was found in your app.

JSON representation 
{
  "sdk": {
    object (Sdk)
  }
}
Fields
sdk

object (Sdk)

The SDK that was found in your app.

CheckDataSecurityEvidence

Evidence concerning data security.

JSON representation 
{
  "dataInTransitInfo": [
    {
      object (DataInTransitInfo)
    }
  ]
}
Fields
dataInTransitInfo[]

object (DataInTransitInfo)

Evidence related to data in transit.

DataInTransitInfo

Evidence related to data in transit detected in your app.

JSON representation 
{
  "uri": string
}
Fields
uri

string

The URL contacted by your app. This includes the protocol, domain, and URL parameters.

CheckSdkIssueEvidence

Evidence concerning an SDK issue.

JSON representation 
{
  "sdk": {
    object (Sdk)
  },
  "sdkVersion": string
}
Fields
sdk

object (Sdk)

The SDK with an issue.
sdkVersion

string

The SDK version.

CheckEndpointRestrictionViolationEvidence

Evidence collected from endpoint restriction violation analysis.

JSON representation 
{
  "endpointDetails": [
    {
      object (EndpointDetails)
    }
  ]
}
Fields
endpointDetails[]

object (EndpointDetails)

Endpoints in violation.

EndpointDetails

Details of the endpoint in violation.

JSON representation 
{
  "endpoint": {
    object (Endpoint)
  }
}
Fields
endpoint

object (Endpoint)

The endpoint in violation.

CheckPermissionRestrictionViolationEvidence

Evidence collected from permission restriction violation analysis.

JSON representation 
{
  "permissionDetails": [
    {
      object (PermissionDetails)
    }
  ]
}
Fields
permissionDetails[]

object (PermissionDetails)

Permissions in violation.

PermissionDetails

Details of the permission in violation.

JSON representation 
{
  "permission": {
    object (Permission)
  }
}
Fields
permission

object (Permission)

The permission in violation.

CheckSdkRestrictionViolationEvidence

Evidence collected from SDK restriction violation analysis.

JSON representation 
{
  "sdkDetails": [
    {
      object (SdkDetails)
    }
  ]
}
Fields
sdkDetails[]

object (SdkDetails)

SDKs in violation.

SdkDetails

Details of the SDK in violation.

JSON representation 
{
  "sdk": {
    object (Sdk)
  }
}
Fields
sdk

object (Sdk)

The SDK in violation.

DataMonitoring

Represents the data monitoring section of the report.

JSON representation 
{
  "endpoints": [
    {
      object (DataMonitoringEndpointResult)
    }
  ],
  "permissions": [
    {
      object (DataMonitoringPermissionResult)
    }
  ],
  "dataTypes": [
    {
      object (DataMonitoringDataTypeResult)
    }
  ],
  "sdks": [
    {
      object (DataMonitoringSdkResult)
    }
  ]
}
Fields
endpoints[]

object (DataMonitoringEndpointResult)

Endpoints that were found by dynamic analysis of your app.
permissions[]

object (DataMonitoringPermissionResult)

Permissions that your app uses.
dataTypes[]

object (DataMonitoringDataTypeResult)

Data types that your app shares or collects.
sdks[]

object (DataMonitoringSdkResult)

SDKs that your app uses.

DataMonitoringEndpointResult

Information about an endpoint that was contacted by your app.

JSON representation 
{
  "metadata": {
    object (DataMonitoringResultMetadata)
  },
  "endpoint": {
    object (Endpoint)
  },
  "hitCount": integer
}
Fields
metadata

object (DataMonitoringResultMetadata)

Metadata about the result.
endpoint

object (Endpoint)

The endpoint that was contacted by your app.
hitCount

integer

The number of times this endpoint was contacted by your app.

DataMonitoringResultMetadata

Information about a data monitoring result.

JSON representation 
{
  "badges": [
    enum (DataMonitoringResultBadge)
  ],
  "lastDetectedAppVersion": string,
  "firstDetectedTime": string,
  "lastDetectedTime": string
}
Fields
badges[]

enum (DataMonitoringResultBadge)

Badges that apply to this result.
lastDetectedAppVersion

string

Your app's version name when this result was last detected within the last 8 weeks. If not set, it wasn't detected within the last 8 weeks.
firstDetectedTime

string (Timestamp format)

The timestamp when this result was first detected within the last 8 weeks. If not set, it wasn't detected within the last 8 weeks.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
lastDetectedTime

string (Timestamp format)

The timestamp when this result was last detected within the last 8 weeks. If not set, it wasn't detected within the last 8 weeks.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

DataMonitoringResultBadge

Indicator badges for a data monitoring result.

Enums
DATA_MONITORING_RESULT_BADGE_UNSPECIFIED Not specified.
NEW Indicates a newly detected result in the data monitoring report.

DataMonitoringPermissionResult

Information about a permission that was found in your app.

JSON representation 
{
  "metadata": {
    object (DataMonitoringResultMetadata)
  },
  "permission": {
    object (Permission)
  }
}
Fields
metadata

object (DataMonitoringResultMetadata)

Metadata about the result.
permission

object (Permission)

The permission that was found in your app.

DataMonitoringDataTypeResult

Information about a data type that was found in your app.

JSON representation 
{
  "metadata": {
    object (DataMonitoringResultMetadata)
  },
  "dataType": enum (DataType),
  "dataTypeEvidence": {
    object (DataTypeEvidence)
  }
}
Fields
metadata

object (DataMonitoringResultMetadata)

Metadata about the result.
dataType

enum (DataType)

The data type that was shared or collected by your app.
dataTypeEvidence

object (DataTypeEvidence)

Evidence collected about the data type.

DataMonitoringSdkResult

Information about an SDK that was found in your app.

JSON representation 
{
  "metadata": {
    object (DataMonitoringResultMetadata)
  },
  "sdk": {
    object (Sdk)
  }
}
Fields
metadata

object (DataMonitoringResultMetadata)

Metadata about the result.
sdk

object (Sdk)

The SDK that was found in your app.

Methods

get

 Gets a report.

list

 Lists reports for the specified app.