Home




General Data Protection Regulation (GDPR)


Read more about GDPR compliance

As of May 25th 2018, the new GDPR law will be fully enforced, which means that for your client in the EU you must ensure that your apps are compliant.

Service providers have been updating their SDKs to offer methods that allow you to opt in and out of data collection. Some service providers require users to provide their own "opt-in" dialog, which must present a clear choice to the end-user and allow them to either opt-in to having their data collected and processed, or opt-out entirely.

The GDPR does not permit automatically opting users in, even if an opt-out method is provided; it must be an explicit opt-in.

Enhance exposes some functionality to make it possible to use these GDPR compliancy features of the SDKs you include when Enhancing your app. Ultimately, the responsibility lies with you to ensure that you are meeting the appropriate regulation.

For the majority of SDKs that support GDPR, you must present an appropriate choice to the user, clearly outlining what the user is agreeing to and giving them a clear choice to opt in or out. Once you have done this, you can use the methods provided in the Drag and Drop library, listed below, to convey the user's choice through to the SDKs you have integrated.


function on_gdpr_opt_in_clicked()
	-- Explicit opt-in
	enhance.serviceTermsOptIn()
end

function on_gdpr_opt_out_clicked()
	-- Explicit opt-out
	enhance.serviceTermsOptOut();
end

Methods

enhance.requiresDataConsentOptIn

nil enhance.requiresDataConsentOptIn(
    function onServiceOptInRequirementCallback
)

This method returns 1 to callback method when any kind of opt-in is required by services that are included in your app. This will check if the user is within a country where GDPR regulations are enforced, and whether you have any services that require opt-in which are not already opted into. If this method returns 0 to callback then all of your SDKs will be operating as normal, or the user has explicitly opted out of data collection/processing.

Parameters:

function  onServiceOptInRequirementCallback - Specifices the callback function.

enhance.showServiceOptInDialogs

nil enhance.showServiceOptInDialogs(
    function onDialogCompleteCallback,
    optional string sdk_id_1,
    optional string sdk_id_2,
    ...
)

This method will instruct any services which contain built-in opt-in dialogs to display them. The Enhance process will inform you about which services allow this type of opt-in. Using SDKs with built-in dialogs is the easiest way to ask your users whether they'd like to opt-in.
Optionally you can add a list of SDK IDs for which you want to display opt-in dialogs, every ID as a separate argument. The Enhance process will instruct you about the identifiers you can use.

Parameters:

function  onDialogCompleteCallback - Called after all opt-in dialogs are closed.

enhance.serviceTermsOptIn

nil enhance.serviceTermsOptIn(
    optional string sdk_id_1,
    optional string sdk_id_2,
    ...
)

Calling this method will opt the current user in to using the services that you selected during the Enhance process. This should be used for any services which don't provide their own opt-in dialogs. You should only call this method after showing a clear consent dialog which contains all of the details regarding consent required by the affected SDKs.
Optionally you can add a list of SDK IDs for which you want to display opt-in dialogs, every ID as a separate argument. The Enhance process will instruct you about the identifiers you can use.

Parameters:

enhance.serviceTermsOptOut

nil enhance.serviceTermsOptOut()

This explicit opt-out will instruct any GDPR compliant services that you're using that the user has specifically declined an opt-in to their data collection and processing. It can also be used to revert a previous opt-in decision by the user - if the user chooses to revoke their consent.