Before you access use cases, permissions or features (for some apps this is called advanced access) or complete your Data Use Checkup, please review the following best practices regarding how you or your organization handles data.
If you’ve been asked to improve your data handling practices, please review these best practices and make any updates needed before re-submitting the data handling questions.
If you need additional clarification about the data handling questions, you can reach out to Meta directly. Within the Data Handling Questions, on the bottom of the page you will see a section titled Need Help? Go to Developer Support. Click on the link and you will receive a pop-up through which you can submit a clarifying question.
To prepare to answer the data handling questions, we recommend that you:
Review and only request the permissions and features that your app needs to function as intended.
For apps that require access to use cases, permissions or features (for some apps this is called advanced access): Be careful to only request and use the use cases, permissions or features that your app needs to function as intended.
For apps that have been published live with a use case, or that have advanced access to permissions and/or features: Review the permissions and/or features connected to the app. Learn more about access levels.
Review your data processors or service providers, including your own companies, and the countries in which they process the personal data of users received from Meta. We encourage the use of data processors or service providers located in countries with strong data protection laws. For example, here is a list of countries that the European Commission has deemed to have adequate data protection laws.
Many data processors or service providers provide location(s) on their corporate website.
Review your policies for disclosing personal data of users to public authorities. We encourage you to have policies and procedures for reviewing the legality of requests from public authorities for access to personal data of users and provisions for challenging the legality or scope of those requests if you consider them unlawful. Finally, we encourage you to have policies or processes to disclose the minimum data necessary to respond to lawful requests from public authorities to access personal data of users.
Meta may restrict or deny access if you answered that you are prohibited from telling us whether you provided the personal data of users to public authorities, or about your procedures for handling such requests.
Review your procedures and processes for documenting requests from public authorities. We encourage documentation of the request, your response to the request and the outcome of the request.
If you create an app with a use case or require access to permissions or features (for some apps this is called advanced access), you will be prompted to answer data handling questions before App Review.
Creating a new app requires that you connect apps to a verified Meta Business Account. If you don’t have one, follow this process to create a new Business Account and verify it. Only business administrators can complete this step. After you submit business verification, you can continue to the next step.
Your answers are auto-saved. After clicking submit, your responses will be evaluated.
Your data handling questions submission will be reviewed promptly. If you are granted the use case or advanced access, you may continue to the App Review process, if you are requesting other permissions and features that require it.
If your app was not granted the use case or advanced access, please review the guidance provided and make the adjustments recommended before submitting your request again.
You will receive notifications in your email and Alerts Inbox indicating that DUC is required. Please follow the DUC process. You will be prompted to answer and submit your answers to the data handling questions.
Once you submit your Data Use Checkup, within a few days you will receive a message in an email and the Alerts Inbox with results. If the checkup is complete, no further action will be required. If changes to your data handling practices are required, you will be asked to update these and re-submit the data handling questions.