Data Handling Questions FAQs

Completing our data handling questions is a requirement for:

Apps that request or have any access to use cases, permissions and/or features (for some apps this is called advanced access).

Apps that have been published live with a use case, or that have advanced access to permissions and/or features. This must be completed annually as part of the Data Use Checkup (DUC).

For the purposes of the data handling questions, “personal data” is any data you receive from Meta that is related to an identifiable person. For examples, refer to the definitions in the General Data Protection Regulation (GDPR) and the UK Information Commissioner’s Office.

• App Review is a forward-looking process that enables us to verify that your planned app uses our Products and APIs in an approved manner.
• Data Use Checkup is an annual process for developers to self-certify that their continued use of and access to specific data via Meta APIs is in compliance with our Meta Platform Terms and Developer Policies.
• Data Protection Assessment is a requirement for apps accessing certain advanced permissions that is designed to assess whether developers use, share and protect Platform Data in accordance with the Meta Platform Terms.

You will not be granted advanced access. (Learn about advanced access, permissions, and features)

Access levels are an additional layer of Graph API authorization that apply to permissions and features for Business, Consumer, and Gaming apps. There are two access levels: Standard and Advanced.

Apps can request permissions with Advanced Access from any app user, and features with Advanced Access are active for all app users. Permissions with Standard Access, however, can only be requested from app users who have a role on the requesting app, and features with Standard Access are only active for app users who have a role on the app.

If your app will only be used by people who have a role on it, the permissions and features your app requires will only need Standard Access. If your app will be used by people who do not have a role on it, the permissions and features that your app requires will need Advanced Access.

If you create an app with a use case, you may be prompted to answer data handling questions before App Review.

You may be prompted to answer questions about data handling when you request advanced access for a new or existing app. Beginning September 5, some developers may also be required to answer data handling questions during their annual Data Use Checkup.

No, you will not be prompted to answer data handling questions if you only need Standard Access to permissions.

A data controller is the entity that exercises overall control over the purposes and means of the processing of personal data. Refer to definitions in the General Data Protection Regulation (GDPR) and the UK GDPR for details and examples. Please ensure that you work with your legal team to understand this definition and how it applies to your business.

For data controller, please provide the name of the legal entity that will control the purposes and means of processing the data made available to you by Meta through these requested permissions or features.

A data processor is a person or business that provides you with services to help you process personal data you obtain from Meta. This may include Service Providers as defined in Meta’s Platform Terms as well as your own companies. Please ensure that you work with your legal team to understand this definition and how it applies to your business.

Processors and service providers are separate entities that, on your behalf, process the Meta Platform Data made accessible to you in order to provide you with a service. Please provide the names of any processors or service providers that will have access to the Meta Platform Data made accessible to you through the requested permissions and/or features.

If you have no processors or service providers, please click “No.” By selecting “no,” you are confirming that you have no processors or service providers accessing the Meta Platform Data for more information.

The form is auto-saved. If you leave the questionnaire and come back, it will reload the previous auto-saved state.

The data handling questions have been translated into 17 languages. If your language is not available, you may use Google Translate outside of the question form. Using Google Translate inside the question form will cause a submission error.

• It is recommended that you consult with legal, policy, and privacy experts within your organization for guidance on how to answer these questions.

• Yes, if you need clarification about the data handling questions, you can reach out to Meta directly.

  • Within the Data Handling Questions, on the bottom of the page you will see a section titled Need Help? Go to Developer Support. Click on the link and you will receive a pop-up through which you can submit a clarifying question.
  • To access this feature, you will need to have a Business Manager account, and make sure to add the app and app admins. Please refer to those links for step-by-step guides.
  • You will receive a response from Meta via an email alert as well as a notification on the App Dashboard.

For apps that require access to use cases, permissions or features (for some apps this is called advanced access). There is no time limit for submitting the data handling questions. Your requested permission(s) will remain in Standard Access until your request has been reviewed and approved.

For apps that have been published live with a use case, or that have advanced access to permissions or features: You will receive notifications in your email and Alerts Inbox indicating that DUC is required. You have 60 days to submit your DUC with data handling questions. Your permission(s) will remain in Standard Access until your request has been reviewed and approved.

For apps requiring access to use cases, permissions or features (for some apps this is called advanced access): Your submission will be evaluated immediately and it may take up to 30 seconds to receive results. If you receive an error, or you do not see a confirmation message after submitting, please click the Submit button on the form again to re-submit the form. Your responses will be saved in the form if this happens.

For apps that have been published live with a use case, or that have advanced access to permissions or features: Your submission will be evaluated within a few days. You will receive a message in an email and your Alerts Inbox.

On your permissions and features dashboard, you can check the status of your request. The Access Level will change to “Advanced Access” once your request has been reviewed and approved.

You can check the status of DUC on your Apps Dashboard.

If your answers to data handling questions are not approved, your app will remain in development mode with standard access to permissions and features.

• In order to gain advanced access to the permission(s), you will need to implement additional protections. Please see our Data Handling Guidelines for more information.

• Please also review the Business Verification process and ensure your app is connected to a verified business. All apps requesting Advanced Access to new permissions must have their business verified.

• Additionally, please review our App Review process which is required when you request access to most permissions

Yes, you can re-submit your answers. If your answers are found to be insufficient 3 consecutive times, you must wait 3 calendar days from your last denied submission before trying again.

Yes, your previous answers are auto-saved. If your request was not granted, it will reload the previous auto-saved state when you return to edit your responses when you submit your request again.

You will be prompted to answer questions about data handling whenever you request a use case or permissions and features (for some this is called advanced access. Additionally, if you have apps that have been published live with a use case, or that have advanced access to permissions or features, you are required to answer data handling questions during your annual Data Use Checkup.