[Joakim_Habekost]

Hi, Thank you for your comment, regarding the Data Laws in France, they require a datasheet of encryption for Apple Appstore, something our team have never made before. Otherwise the data law is the same, yes. Any tips are welcome.

[pjerem]

If your application doesn’t implement custom encryption code (which it probably does not) you can just check the "None" option, even if your app does use encryption (which it probably does if you are using https for example).

As long as your app is not providing an encryption algorithm, you are fine ignoring this.

It’s also fine if you do use encryption with the Apple provided libraries since in this case you are not providing encryption code but just using it.

In fact, nobody cares about this in France, it looks like Apple is the only one being so bureaucratic about this stupid declaration. It’s pretty specific, absolutely not verified by anyone (our current government is obsessed with public expenses reduction so you can easily imagine that nobody cares about the version of RSA a random foreign app uses).

This declaration is only useful for apps that have encryption in their core business (password managers, encryption of files …).

IIRC, this declaration is only a mean for the national cybersecurity agency to know if a given application can become a threat for national security if it happens to use outdated or flawed encryption. It’s not to give them access to anything (you just declare algorithms, not the keys).

It’s a frequent thing that happens to frighten foreign developers and we regularly have unavailable apps for this reason because it’s true it’s unclear.

[Joakim_Habekost]

Thank you so much for taking your time to write this in-depth comment! Based on advice from you, and others, the app is now launched in EU (incl. France), US, Canada, and UK on both Andriod and iOS. Thx!