Problem
The first version of the consent confirmation covers instrumentation but not personal data (IP, UA) collected when issuing web requests.
Solution
Change the consent flow as follow:
- Change the wording to include personal data (copy TBD)
- Change the softkeys from yes/no to policy/AGREE/terms. There is no "no" option. Users who don't agree have to exit the app by pressing the back button
- The consent popup appears before or after the onboarding flow (TBD)
- Remove the first option from the "Privacy and terms" settings menu option
Design
Consent Screen |
- Include it after the onboarding, "Get Started" on the last onboarding screen brings users on this screen.
- It's a mandatory screen so users who skip onboarding will also need to go through it.
- Bring back the users to this screen if they exit the app by pressing back hardware key.
- Selecting "Agree" take users to search screen.
- Remove "send data usage" popup from search screen.
Links
- Privacy policy - https://foundation.m.wikimedia.org/wiki/Privacy_policy
- Terms of use - https://foundation.m.wikimedia.org/wiki/Terms_of_Use/en
Notes
- When the user selects "AGREE" record the consent on the device (localstorage) and include the current timestamp and app version. Also send it to EventLogging using the KaiOsAppConsent schema.