Apple · Apple App Store Review Guidelines · View original document ↗

Health and Medical Data Handling Requirements

High severity High confidence Explicitdocumentlanguage Unique · 0 of 343 platforms
Share 𝕏 Share in Share 🔒 PDF
Monitor governance changes for Apple Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.

This analysis describes what Apple's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

This provision establishes a baseline data protection framework for health-related apps on the App Store by restricting monetization mechanisms tied to health data and mandating transparency about data collection practices. It operationalizes compliance obligations across jurisdictions and constrains the commercial uses available to developers handling sensitive health information.

Recent Activity

This document changed recently

Medium Jun 9, 2026

The updated guidelines state that developers must ensure kids receive age-appropriate experiences within their apps and must remove user-generated content that violates the guidelines, terms of service, or community standards. Under the revised policy, if Apple identifies policy-violating content, the developer will be asked to remove it and provide a compliance improvement plan. Based on the developer's response, the app may be removed from the App Store until compliance is demonstrated. This establishes a formal escalation pathway where developer inaction or inadequate remediation can result in app suspension or removal.

View change record →

Clause Stability Stable

0
Changes
3
Months Monitored
May 10, 2026
First Seen
May 11, 2026
Last Seen

Consumer impact (what this means for users)

Users of health apps governed by these terms benefit from restricted secondary uses of their health data and are entitled to clear disclosure of collection and use practices before downloading. The provision limits the commercial data practices available to developers, meaning users' health data cannot be repurposed for advertising or analytics partnerships without explicit separate consent.

Cross-platform context

See how other platforms handle Health and Medical Data Handling Requirements and similar clauses.

Compare across platforms →

Monitoring

Apple has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →
▸ View Original Clause Language DOCUMENT RECORD
"
Apps in the Health and Fitness category, as well as apps that access HealthKit or health records, must comply with applicable law in the regions where the app is distributed. Health apps that store users' health or medical data must clearly disclose what data will be collected and how it will be used. Apps must not use or disclose to third parties data gathered in the health, fitness, and medical domains for advertising or other use-based data mining purposes.

— Excerpt from Apple's Apple App Store Review Guidelines

Provision details

Document information
Document
Apple App Store Review Guidelines
Entity
Apple
Document last updated
May 5, 2026
Tracking information
First tracked
April 28, 2026
Last verified
May 12, 2026
Record ID
CA-P-008991
Document ID
CA-D-00025
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
307db15d06f03003277f88a1476a1308e92cc7cba75906b4fac341d1054f5040
Analysis generated
April 28, 2026 08:36 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Apple
Document: Apple App Store Review Guidelines
Record ID: CA-P-008991
Captured: 2026-04-28 08:36:55 UTC
SHA-256: 307db15d06f03003…
URL: https://conductatlas.com/platform/apple/apple-app-store-review-guidelines/health-and-medical-data-handling-requirements/
Accessed: July 4, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
High
Categories

Other risks in this policy

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Start Compliance free trial

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Apple's Health and Medical Data Handling Requirements clause do?

This provision establishes a baseline data protection framework for health-related apps on the App Store by restricting monetization mechanisms tied to health data and mandating transparency about data collection practices. It operationalizes compliance obligations across jurisdictions and constrains the commercial uses available to developers handling sensitive health information.

How does this clause affect you?

Users of health apps governed by these terms benefit from restricted secondary uses of their health data and are entitled to clear disclosure of collection and use practices before downloading. The provision limits the commercial data practices available to developers, meaning users' health data cannot be repurposed for advertising or analytics partnerships without explicit separate consent.

Is ConductAtlas affiliated with Apple?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Apple.