Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Account deletion mandatory from within Android apps #11950

Closed
AndyScherzinger opened this issue Sep 7, 2023 · 8 comments · Fixed by #12015
Closed

Account deletion mandatory from within Android apps #11950

AndyScherzinger opened this issue Sep 7, 2023 · 8 comments · Fixed by #12015
Assignees
Labels

Comments

@AndyScherzinger
Copy link
Member

https://support.google.com/googleplay/android-developer/answer/13316080

Starting from December 2023 we need to have a way that user can trigger/ask for account deletion from within Android app.
A link would also be enough.

On Server side we do not yet have this, but I found https://apps.nextcloud.com/apps/drop_account
As this (or similar) must be working by December, we should put something at latest in NC28 in place, and probably "backport" it.

@tobiasKaminsky @mahibi @ZetaTom


Account Deletion Requirement

If your app allows users to create an account from within your app, then it must also allow users to request for their account to be deleted. Users must have a readily discoverable option to initiate app account deletion from within your app and outside of your app (e.g., by visiting your website). A link to this web resource must be entered in the designated URL form field within Play Console.

When you delete an app account based on a user’s request, you must also delete the user data associated with that app account. Temporary account deactivation, disabling, or “freezing” the app account does not qualify as account deletion. If you need to retain certain data for legitimate reasons such as security, fraud prevention, or regulatory compliance, you must clearly inform users about your data retention practices (for example, within your privacy policy).
To learn more about account deletion policy requirements, please review this Help Center article. For additional information on updating your Data safety form, visit this article.


From @jancborchardt

@tobiasKaminsky as you suggested we modify our existing "Remove account" dialog. I would go with 2 radio options:

Title: Account removal

[Here we should show avatar and name as feedback that you are looking at the correct account.]

Remove local account
Remove account from device and delete all local files

Request account deletion
Opens a website to start the process and deletes all local files

With "Cancel" and "Remove account" or "Request deletion" button (not just "Ok").


On drop_account app:

expose capability that account can be deleted (e.g. no LDAP)
@AndyScherzinger AndyScherzinger moved this to 📄 To do (max 2 entries / member) in 🤖 🍏 Clients team Sep 7, 2023
@AndyScherzinger AndyScherzinger moved this from 📄 To do (max 2 entries / member) to 🏗️ In progress in 🤖 🍏 Clients team Sep 7, 2023
@tobiasKaminsky
Copy link
Member

@AndyScherzinger
Copy link
Member Author

@ZetaTom @marcelklehr please see https://framagit.org/framasoft/nextcloud/drop_account/-/issues/25#note_2005909 for the solution and details. Publishing of the updated up to be in around 2 weeks time.

@tcitworld
Copy link
Member

Version 2.3.0 has been published https://apps.nextcloud.com/apps/drop_account

@tcitworld
Copy link
Member

expose capability that account can be deleted (e.g. no LDAP)

Note : There's currently no way to know whether an account should be deleted on Nextcloud or if it should be done with an external source.

I excluded users from LDAP and SAML to keep only 'Database' and 'Guests' backends, but here's two remarks:

  • there might be valid use cases to delete your Nextcloud account even though you're using a 3rd-party user directory. I could add some admin configuration to allow to override this.
  • there's no real way to distinguish a regular Database user from one created through the nextcloud-oidc-login or nextcloud-social-login apps, so those users are allowed to be deleted even though they are kinda 3rd-party

@tcitworld
Copy link
Member

Also the API to trigger direct deletion is documented if possible in the future : https://framagit.org/framasoft/nextcloud/drop_account/-/blob/main/openapi.json

@AndyScherzinger
Copy link
Member Author

^ @ZetaTom

@AndyScherzinger
Copy link
Member Author

Thanks a lot @tcitworld work the ongoing work on this! Highly appreciated! 💙

@AndyScherzinger AndyScherzinger added this to the Nextcloud App 3.27.0 milestone Nov 29, 2023
@github-project-automation github-project-automation bot moved this from 🏗️ At engineering to 🎉 Done in 🖍 Design team Nov 30, 2023
@github-project-automation github-project-automation bot moved this from 🏗️ In progress to ☑️ Done in 🤖 🍏 Clients team Nov 30, 2023
@appsfeature

This comment was marked as spam.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
Archived in project
Archived in project
Development

Successfully merging a pull request may close this issue.

6 participants