I'm creating an iOS app using Firebase (Analytics, Crashlytics). I also have my own API-server, which I access through HTTPS.
I'm ready to submit my app for beta-testing. I get the warning "Missing Compliance". My app uses encryption (HTTPS-connections), so I select yes. The second question is if my app qualify for any of the exemptions provided in cat 5 part 2 of the U.S. Export Administration Regulations. I don't really know how to check this. My app is not designed for medical end-use or one of the other options specified at the bottom.
I do use Apple's keychain to store a JSON web token because users can sign in to my app. I collect some personal information (through firebase or through my own API to store it in a database), these connections are all over HTTPS.
I also get this remark: "
If you are making use of ATS or making a call to HTTPS, you are required to submit a year-end self classification report to the US government.". I have visited the website of the US department of Commerce, but I'm from Belgium and I don't really get why I should do this, because my app is only for use in Belgium and The Netherlands (for now). Can someone guide me a little but through this process, or give me some information about the exempts (and where I can find them). It seems a little bit silly to me to do all this just because I use a HTTPS-connection...
I'm ready to submit my app for beta-testing. I get the warning "Missing Compliance". My app uses encryption (HTTPS-connections), so I select yes. The second question is if my app qualify for any of the exemptions provided in cat 5 part 2 of the U.S. Export Administration Regulations. I don't really know how to check this. My app is not designed for medical end-use or one of the other options specified at the bottom.
I do use Apple's keychain to store a JSON web token because users can sign in to my app. I collect some personal information (through firebase or through my own API to store it in a database), these connections are all over HTTPS.
I also get this remark: "
If you are making use of ATS or making a call to HTTPS, you are required to submit a year-end self classification report to the US government.". I have visited the website of the US department of Commerce, but I'm from Belgium and I don't really get why I should do this, because my app is only for use in Belgium and The Netherlands (for now). Can someone guide me a little but through this process, or give me some information about the exempts (and where I can find them). It seems a little bit silly to me to do all this just because I use a HTTPS-connection...
