On App Store Connect, we're required to upload a screenshot of in-app purchase screens to submit them for approval. Unfortunately the uploader only seems to work about 5% of the time, with it failing (see screenshot) every other time. I've tried several different browsers and it's the same every time. Can something please be done about this? It's not acceptable for the developer tooling to be this buggy, and it's preventing many people from being able to submit in-app purchases.

The docs here: https://developer.apple.com/documentation/appstoreconnectapi/certificatetype Imply that you can create a certificate with a certificateType of PASS_TYPE_ID_WITH_NFC or PASS_TYPE_ID. However, when using the API, I get a 404 or a 403 status code when attempting to use them. Additionally, there is no documented way to associate the certificate to a particular bundle id for the pass type. Has anyone been able to successfully create a certificate for passes? If so what request did you send?

Hello! In our applications we consume several 3rd party libraries that use one or more API from this list - https://developer.apple.com/documentation/bundleresources/privacy_manifest_files/describing_use_of_required_reason_api?language=objc. These XCFrameworks contain static frameworks (a framework with a statically linked binary inside), so after linking, the machine code inside these frameworks becomes either a part of the app's executable or a part of a dynamic library. We integrate these libraries using Swift Package Manager's ".binaryTarget" feature and have been having trouble understanding where should the privacy manifest be located in the final app, so that we can pass the App Store review process. It seems that with SPM the privacy manifest (PrivacyInfo.xcprivacy file) is lost - https://github.com/apple/swift-package-manager/issues/7317 If the static framework is linked as a part of the app's executable, does that mean we have to manually merge the app's privacy manifest with that of a 3rd party static library? If the static framework is linked as a part of a dynamic library within the app, where should the privacy manifest be located? And what should happen if there are multiple static frameworks each with a privacy manifest being linked into this dynamic library? Thank you very much!

Our team uses a static library (.a) consisting of C and C++. Our team is developing static libraries internally and not sharing them to the outside. Should we still provide 'Privacy Manifest' in this case?? I added the contents of our team's static library (.a) to the app's 'Privacy Manifest' and there was no problem. Nevertheless, if I have to add it separately to the static library (.a), should I create a new framework project itself and not use the .a? Or can I just create a new framework and wrap the .a file??

I'm trying to submit an app that we have successfully tested in TestFlight. After completing all the distribution steps and submitting for review, the review is failing with the response: "Your app version was rejected and no other items submitted can be accepted or approved. You can make edits to your app version below." I haven't received an details in app or via email to provide further information. The version in TestFlight that I have uploaded is: v1.0.23(23). When entering the distribution details, and from the rejection response., it looks like the version number I'm entering on the main distribution page is the issue - maybe? I have tried entering 1.0.23, 1.0.23(23), even just 1.0 - but it constantly keeps getting rejected. Is it really the version no. that is wrong, or potentially something else? How can I get more information on why the submission was rejected?

Hello, With the new App Store Connect, iOS apps become available on the new Macs with Apple Silicon natively. A couple of my apps got quite some complications with Catalyst and do not need it anymore. I would like to know how to completely remove a platform from App Store Connect, without impacting the iOS version, so that I can let my iOS app be available on the Mac App Store instead of the Catalyst app. Thank you

Hi, We aim at delisting our MacOS app from the Mac App Store, so that it is no longer available for new users, while maintaining uninterrupted access for our existing MacOS user base. However, this MacOS app is associated to an iOS app in the same app group. Our current challenge lies in the process of removing the older MacOS app from sale without affecting the availability of the associated iOS app. We have explored the "remove from sale" option in App Store Connect, but it appears to be common to both MacOS and iOS, preventing us from delisting the MacOS app separately. We'd like to understand if there is a way to remove the MacOS app from sale without impacting the associated iOS app. If there are any alternative solutions or best practices that can help us achieve this, we would greatly appreciate your advice. Any advice or suggestions you can provide would be highly appreciated !

I know that most people on this forum will likely not be lawyers, but I am hoping someone with experience or insight can point me in the right direction. I am trying to publish an application to the iOS app store and getting ready to publish, but I never addressed the part about export control documentation. I use some hardware components made in the UK, and the only cryptography I'm aware of using is HTTPS and AES-128 (LoRa security) in the hardware. My app will only be available in the U.S. I will not be exporting any data or hardware, and everything I am hosting my application on is in the U.S. Does my application still fall under the EAR? Or is it something else I am supposed to be looking for? Someone I originally asked this about said that simply using imported hardware means it falls under the EAR, but that doesn't make sense to me. I am new to all of this, so if anyone can at least point me in the direction to look or has experience, that would be greatly appreciated.

I currently have an app listed in the App Store under my company's name. Recently, we restructured our company and adopted a new name that better reflects our product. My question is: Can I update our company name and DUN (Data Universal Numbering) number in the App Store, or do I need to create a new account for our restructured company? Alternatively, should I submit the updated version of the app under the original company name and DUN number?

In my iOS app, I'm planning to use CryptoKit to decrypt a data file downloaded remotely from my backend servers. I'm only using standard cryptography provided by iOS itself (Swift CryptoKit framework). According to App Store Connect documentation: "You're required to provide documentation if your app contains any of the following: Encryption algorithms that are proprietary or not accepted as standard by international standard bodies (IEEE, IETF, ITU, etc.) Standard encryption algorithms instead of, or in addition to, using or accessing the encryption within Apple's operating system" I assume that since I am only using cryptography provided by the underlying OS itself, I can safely set ITSAppUsesNonExemptEncryption to NO. Can someone provide me with some guidance or opinion? Thank you!

Hi, Our organization has an app that serves as the remote control for an IoT device. The app is free, with no in-app purchases. Any person who purchases the IoT device can use the app for free to set up the device. Can I opt for non-trader status for the app?

Cloud not create new app version, error show "An error has occurred. Try again later" App: TS Track Build Identifier: com.ts.track

Hello! I am having issues retrieving data from the Apple Store Connect API. Here is the call I am making: $headers = New-Object "System.Collections.Generic.Dictionary[[String],[String]]" $headers.Add("Authorization", "Bearer SECUREINFORMATION") $response = Invoke-RestMethod 'https://api.appstoreconnect.apple.com/v1/analyticsReports/r39-871f60a5-f26a-4de8-8fae-a9a1d506c1a0/instances' -Method 'GET' -Headers $headers $response | ConvertTo-Json I have removed the JWT token for privacy. Here is the response I am receiving: { "data": [], "links": { "self": "https://api.appstoreconnect.apple.com/v1/analyticsReports/r39-871f60a5-f26a-4de8-8fae-a9a1d506c1a0/instances" }, "meta": { "paging": { "total": 0, "limit": 50 } } } The issue is that no matter what filters I apply to my call or which ID I select to view instances for I am always returned an empty array. This is a problem because I need to download report data for our organisations apps using the API. Please let me know how I restructure my call to be returned valid information. Feel free to reach out if there is any other information required!

Today the Connect page asks me to confirm if I am a trader or not under DSA. I am an independent developer and have several apps in App Store. I have no idea what a trader is. The DSA defines a trader as “any natural person, or any legal person irrespective of whether privately or publicly owned, who is acting, including through any person acting in his or her name or on his or her behalf, for purposes relating to his or her trade, business, craft or profession.” If you have questions about your status as a trader, consult with your legal advisor. I emailed Connect support but their reply is very "official" which confuses me more.

Hello, I'm unsure what option to select when it comes up to specify what type of encryption my app is using and if en export compliance is required to distribute my app in France. The app is using SSL certificates to communicate with a connected device, such as https works. I have to select one of the following options: Encryption algorithms that are proprietary or not accepted as standard by international standard bodies (IEEE, IETF, ITU, etc.) Standard encryption algorithms instead of, or in addition to, using or accessing the encryption within Apple's operating system Both algorithms mentioned above None of the algorithms mentioned above Does SSL (RSA, SHA-1, etc.) falls under A) "standard encryption algorithms" or is that something that is provided by default on the OS and falls under B) "accessing the encryption within Apple's operating system" ?? If B) I would need to check the "None of the algorithms"-option because I do not use standard encryption "instead of, or in addtion to", only OS provided encryption. Am I right? Or does SSL is not used as standard in the OS and falls under A) ??

Team, We are trying to publish new app (Under new brand label) for newly acquired company. app update is rejected for the reason: Guideline 5.1.1 - Legal - Privacy - Data Collection and Storage The app must be published under a seller and company name that is associated with the organization or company providing the services. In this case, the app must be published under a seller name and company name that reflects the institution name. Any suggestions??

After deleting custom product pages, can I see the deleted custom product pages data in App Analytics?

Hello, I need to be sure we are doing correct. Can we clarify we can present list of available subscriptions and current subscription to the user in the iOS app where we don't use any payments inside. We have payments only on the web page. Basically our subscriptions allow users to extent hardware devices our consumers buy at us. It's clear for us that we are not able to call for actions for payments and we are not able to user other payment methods in the app. But it's not clear for me if we are allowed to show subscriptions without any action for payments. Here is Description of Business Model In one of the first submissions of our app to the app store about 5 years ago we clarified our business model in detail during the review and it was confirmed that it is fine for this model to collect a fee outside of the app. The main reason was that the value creation happens fully outside of the app. The model did not change since. We are happy to describe here our business model in more detail. The Solar Manager System comprises a hardware https://www.solarmanager.ch/produkt/gateways/,, a backend, a web application and an app (the one under review). The hardware gateway is optimizing the own consumption of solar systems in residential homes. This hardware gateway is locally installed in the home of the user and communicating to many home appliances (battery, PV inverter, car charger, …). The main value creation to the end user is that his home appliances are controlled such to optimize for highest solar consumption and in some cases dynamic electricity tariffs. This means our hardware is starting / stopping / controlling theses devices locally directly via different interfaces. Different algorithms are running directly on the hardware to perform such optimizations. Our backend and web front-end are used to configure the devices and prioritize devices according to the user need. For the first year in 2018 our system was running without any app. It was only hardware, backend and front-end. Also we have a support team answering questions and phone calls from users that have a problem with the system. For this system we have a one time fee to buy the hardware device that is then installed locally in the home of the user. Additional we have a yearly fee to cover cost for data storage, development costs of backend and front-end, and to cover our support. This fee is collected through a payment system in our backend. It can be accessed from the front-end. Depending on the amount of data stored, number of external devices connected to our hardware and the amount of support given to the user there are different levels for the fee. The fee is directly related to the data storage cost, the backend needs, and the support effort. The fee is not collected for digital content consumed through the app. Thanks.

I have been trying to enroll onto the program for sometime now but it doesn't go through. I provided every detail accurately but still haven't received any meaningful update. Is it normal that during the purchase we aren't asked to provide the CVV number of our credit card hence payment couldn't be processed or what? The email I received highlighted an enroll request and order. I have consistently sent so many messages but no replies. If the wait time is even a year, isn't it advisable to make it known to the people rather than making it seem an easy process of only two business days. The time I received has long elapsed and I don't how to go about it now. Nothing works.

Address validation failed. Please update legal entity address 2)A new version of your Paid Applications agreement is available. 3)To sell your app or other in-app purchases, you must sign the Paid Applications Agreement. 4)To receive payments from Apple, you must add a bank account. 5)To meet the requirements of the Paid Applications agreement and receive payments, you must add a U.S. tax form.