I know that most people on this forum will likely not be lawyers, but I am hoping someone with experience or insight can point me in the right direction.
I am trying to publish an application to the iOS app store and getting ready to publish, but I never addressed the part about export control documentation. I use some hardware components made in the UK, and the only cryptography I'm aware of using is HTTPS and AES-128 (LoRa security) in the hardware. My app will only be available in the U.S. I will not be exporting any data or hardware, and everything I am hosting my application on is in the U.S.
Does my application still fall under the EAR? Or is it something else I am supposed to be looking for? Someone I originally asked this about said that simply using imported hardware means it falls under the EAR, but that doesn't make sense to me.
I am new to all of this, so if anyone can at least point me in the direction to look or has experience, that would be greatly appreciated.
