In accordance to the Apple 5.1.1v https://developer.apple.com/support/offering-account-deletion-in-your-app/ your custom branded app must include a request to delete option.
Here is a snippet from the link above:
Starting June 30, 2022, apps submitted to the App Store that support account creation must also let users initiate deletion of their account within the app. Deleting an account removes the account from the developer’s records, along with any data associated with the account that the developer isn’t legally required to maintain. Providing this capability gives people more control of the personal data they’ve shared. If you’re updating an app or submitting a new app with account creation, please read the guidance below to prevent delays in review.
This feature mandate is Apple's way of complying with international standards such as GDPR, VCDPA and CCPA. Hapana will be adding more features and tools in the coming months to align our standards as Data Processors with GDPR more fully and we will provide you the Data Collector the tools you will need to align as well.
As of today all app updates submitted to Apple will include the following feature.
Instructions for Use:
In your app, your client may now navigate to More> View Profile> Edit Profile.
Here they will have the option to toggle the Request Delete of Account option. It looks like this:
An email will be generated and sent to all Administrator role assigned Business Users at the client's Home Location. Administrators are defined as those with this role set within Team Settings:
The emails sent will look like this and include any additional information the client may have typed in during the submission process.
You and your admin can take up to 30 days to respond to your client's request by GDPR standards. Each request must be evaluated by you as a business owner and you can decide if a deletion of account makes sense or is it in conflict with the contractual obligations your client has signed with you. Hapana will not weigh in or delete your clients' information for you. It will be your business that decides when and if you will honor their request.
In the coming week we will be releasing a tool in Core> Clients> Information tab that will allow you to anonymize client information. Anonymizing the data will achieve the delete requirement while maintaining historical data integrity without PII associated with that data. Stay tuned for that update and link to be added here.
To limit the receipt list of the Request fro delete emails,
Please navigate to: Team Settings > Team Access Groups> Administrator account type > access settings
Please access (all) of your Team Access groups with Administrator account types
Please see that the following toggle named " Allow to Receive Account Delete Request Emails " has been added...
...and toggle OFF this setting for those groups you wish to now exclude from the email receipt. Until this is toggled off, each of your administrator employees will receive the emails.
We have deployed this toggle as ON by default, to allow all Admin Account type employee records to receive the Request for Delete emails without interruption as described above.
Please share the following page to your clients for easy review and reference to this feature: