For instance, in 2019, the French usa consumer email list supervisory authority fined Google LLC and Google France SARL for lack of transparency in the processing of personal data and failure to provide adequate information regarding such processing (the case was processed under the GDPR).
CNIL alleged that information regarding personal data processing provided by Google to its users was not sufficiently transparent, and thus could not be considered accessible and comprehensible.
In a nutshell, Google had not properly implemented rules arising from the GDPR. CNIL also pointed out that information was dispersed in many documents, for instance, to obtain full information about processing for the purposes of advertisement targeting, the user had to take five confusing steps, and for the purposes of geolocalization – even six.
Go to the section “How to write a mobile app privacy policy?” to see our advice on avoiding mistakes made by Google.
A quick look at research
If you are interested in not only the legal but also the scientific basis of a mobile app privacy policy, here is some data: