From April 2022, apps on the Google Play Store will need to submit privacy details about their app. On each app’s product page, users will be able to see the data the app may collect, and whether that data is linked to them or used to track them.
This page provides information on how the data captured by Bugsnag and its usage relates to the guidance from Google.
The automatically captured data page provides information on what data Bugsnag captures by default, and guidance on preventing capture of each type of data. Bugsnag can be configured to override any automatically captured data, and also send custom additional metadata. Custom metadata you choose to send is of course out of the scope of this document.
The following table describes how Google’s definition of data types relate to Bugsnag’s automatically captured data, to aid providing privacy information for an app.
|Data||Automatically captured by Bugsnag|
|Race and ethnicity||No.|
|Political or religious beliefs||No.|
|Sexual orientation or gender identity||No.|
|Other personal info||No.|
|Credit card, debit card, or bank account number||No.|
|Other financial info||No.|
|Health and fitness|
|SMS or MMS messages||No.|
|Other in-app messages||No.|
|Photos or videos|
|Voice or sound recordings||No.|
|Other audio files||No.|
|Files and docs|
|Files and docs||No.|
|Page views and taps in app||No.|
|In-app search history||No.|
|Other user-generated content||No.|
|Other actions||Yes. Breadcrumbs are stored and sent with each event report. You can override which breadcrumbs are captured with Android
User interaction and navigation type breadcrumbs are captured for React Native, Unity and Unreal Engine projects. These include details of which selectors are clicked, their text value and the user’s journey through the application, so consider for your app whether these breadcrumbs contain any other types of data. You can amend or remove these using the React Native
Sessions are tracked by default with the Bugsnag notifiers. You can disable automatic session tracking for each platform as follows: Android, React Native, Cocos2d-x, Expo, Unity, Unreal Engine
|Web browsing history||No.|
|App info and performance|
|Crash logs||Yes. Additionally, in cases where a crash occurs within Bugsnag code itself the uniquely generated device ID will be sent to Bugsnag as part of the error report. This is not overridable.|
|Other app performance data||Yes. Bugsnag additionally captures application information by default.|
|Device or other identifiers|
|Device or other identifiers||User ID. An overridable unique identifier is generated for the
Device ID. An overridable unique identifier is generated for the
SmartBear does not use event data from customer applications for any of the purposes outlined by Google. We processes data on behalf of each Bugsnag customer to provide data analytics about crashes and application stability to that customer (the data controller).
However, by using Bugsnag, you may be using data in the ways described below.
|Data purpose||Applicable to your use of Bugsnag?|
|App functionality||Yes. You can use Bugsnag to minimize app crashes, and improve stability.|
|Analytics||You may consider that you use Bugsnag for analytics purposes, such as planning new features, and measuring audience sizes.|
|Advertising or marketing||No.|
|Fraud prevention, security, and compliance||No.|
If you are setting user data, then you need to be aware that all reports sent to Bugsnag can be linked to that individual user. By default Bugsnag captures a unique user ID (per device) so that reports from the same user can be linked, even if no user data is associated with the reports.
This unique ID can be removed by setting null for each of the fields in setUser. There is also a device.id field which uses the same id as the default user id. This can be overriden if required. However note that the default device / user ID will still be used for internal crash reports, where the error came from the Bugsnag SDK itself.
Communications between your application and Bugsnag servers are encrypted via industry best-practice HTTPS and Transport Layer Security (TLS) by default.
There is no mechanism to delete previously collected data via the Bugsnag Android notifier directly. Developers that have access to their organisation’s Bugsnag dashboard can delete any information that has been previously collected. It is also possible to delete information specific to individual users.