Ongoing Review - Best Practices

Maintaining App Functionality

Keeping your test details up to date

Ongoing reviews are conducted by Meta reviewers using the test details you provided when creating a new app. To reduce friction, here are some best practices:

• Fill out the test instructions under your app’s “Basic” settings when you first create an app

• Update the test instructions under app’s “Basic” settings whenever there is a change to how your app is accessed. This includes, but are not limited to:

  • Where to find your app
  • Instructions for accessing the app
  • Payment codes, if required

You will also have the opportunity to update your previous test details during your annual Data Use Checkup (DUC). Please ensure that all your test details are up to date, if you have not done so previously.

Keeping permissions up to date

Remove any unused permissions from apps in the App Review tab, or apps that you no longer need. Carefully assess whether or not you need the app as this action may be difficult to reverse.

• To remove an app, go to App Dashboard > Settings > Advanced.

• To remove permissions, go to App Review > Permissions and Features > Remove perspective permissions using the bin icon.

• To remove permissions on the new app experience, remove the use case from your app or remove the permission from the use case.

If your app has any business use cases, you can check your eligibility and upgrade to Facebook Login for Business, which has limited permissions and features. This may reduce the frequency in which you are subjected to ongoing reviews. Please note, your app will still have to demonstrate that it meets Meta’s Platform Terms to maintain its status.

Maintaining your privacy policy

As a part of the ongoing reviews, Meta reviewers will also be checking your privacy policy to ensure that they fulfill Meta’s requirements.

Host your privacy policy on a publicly available link owned and managed by your organization.

Provide a clear example of what data you collect, how you will use it, and the purposes for which you’re using it.

Ensure your link remains live and up-to-date.

Include a clear provision that all users can request their data be deleted.

Ensuring notifications are on

These reviews could occur at any time. To ensure you receive notifications of these requirements, here are a few settings to check:

• Check that the contact email is accurate and regularly monitored.

• Check that notification settings are updated to receive these communications from Meta.

• Check that the list of app admins is up to date in the App Dashboard > App Roles.