Developer Verification

I'd also like to know what email address will be displayed; will you be showing my Connect IQ login email address or the email address that I use on the app upload details (labelled as "The email address will be displayed publicly as a contact for your app."). I don't want my login email exposed and if an email address needs to be displayed then I want it to either be the app contact email or another email I specify.

Further to the privacy of a developer, will you be exposing the postal code? Because while 64106 might be generic enough in that it covers all of Kansas City, my postal code identifies my location down to a single side of a street block. For example, "T2P 1C9" tells me that you live on the south side of 8th Ave SW between 2nd and 3rd Street in downtown Calgary, Alberta (Canada). There might be 12 houses in a city block which means you basically know where I live.

Finally, can you please post a link to the law(s) that we are to be complying with? Is this related to Apple's fight with the EU?

That screen cap is inaccurate. I think it was from an early design when we were still trying to determine what developer information we were required to display. I've updated the blog post to be more specific.

7 hours ago you wrote: "Postal code is not exposed in the contact info", but in the announcement you updated 30 minutes ago: "City/State/Zip"

I wonder who'll read or even click that link to the law.

Am I guessing this right: Garmin doesn't really care, as long as nobody contacts Garmin that some app has some issues with GDPR. When some legal entity from the EU will contact Garmin then this new form will enable Garmin a. not to take responsibility (won't pay a fine) b. pass responsibility to the developer, c. quickly remove the app from the store.

And the more interesting and important question that Garmin legal will need to give us their opinion on: when my Datafield or app records a fit file via CIQ apis and it is synced to the Garmin servers at the end of the activity, then what's the legal status? I mean who's the controller of the collected data? The app developer or Garmin?

Or let's ask a broader question: if I only use the apis in the SDK (Properties, Storage, Fit contribution, Complications, System.println, etc) and don't use the internet (make no web requests from my code) then am I OK? Or are there still things to consider?

Just a guess, but one thing here that was in the original blog post was that a developer could be requested for something like a scan of their DL to verify they are a real person and not just a random, made up email address, so if someone contacts Garmin, Garmin has a real person to attach the app to incase there is an issue in the EU.  Garmin will have more info about the dev that's not shown to the public.

Regarding use of phone number should we expect to be contacted on it? Or is that more for providing options in the event something happens? Like will the EEA be ringing me up or?

Exactly! It would be great if the form we fill in would include information about how that data will be used. (Not intended as a pun. but as this whole thing was triggered by privacy laws in the EU it would be great if Garmin would provide us this information, exactly as it is required by the law and as now Garmin expects us to abide that same law)

Which piece of information will be public to the world

Which will only be used by Garmin

Which will be used by Garmin and shared by 3rd parties on demand (i.e in the event some 3rd party contacted Garmin about our app)