Pixalate Releases First Quarter 2022 CBPR Compliance Report for Google and Apple App Stores; 40% of mobile apps mentioning “APEC CBPR” in their privacy policies may misrepresent participation in a global privacy program

Pixalate analyzed the privacy policies of 3.9MM apps and published a list of mobile applications with the Asia-Pacific Economic Cooperation (APEC) Cross-Border Privacy Rules (CBPR) referenced in their Privacy Policy, including those registered with companies that do not appear in the CBPR Compliance Directory.

LONDON, July 21, 2022 /PRNewswire/ — Pixelate, the world’s leading compliance, privacy and fraud protection analytics platform for connected television (CTV) and mobile advertising, reviewed the privacy policies of approximately 4 million apps Google and Apple mobile app stores. Pixalate found that the privacy policies of 815 apps included reference to the APEC CBPR system in Q1 2022. See the full Q1 2022 CBPR compliance report here.

In United States the Federal Trade Commission (FTC) is the Privacy Enforcement Authority (PEA). More recently, the FTC brought enforcement measures against three companies and issued warning letters to 28 companies for falsely declaring that they participated in the APEC CBPR system.


According to Pixalate, of the 815 apps with “APEC CBPR” in their privacy policy:

  • 40% are registered with companies not listed in the CBPR Compliance Directory, but may be affiliated with a certified company.
  • 46% are enrolled in United States.
    • 310 of the applications registered in the United States have certification companies listed in the CBPR Compliance Directory.
    • 65 of the apps registered in the US have purported certification companies that are not listed in the CBPR Compliance Directory.
  • 15% are apps in the Medical and Health & Fitness categories and registered with companies not listed in the CBPR Compliance Directory.
  • 5% that are likely child-directed apps, per Pixalate’s Children’s Online Privacy Protection Act (COPPA) compliance methodology, and registered with companies not listed in the CBPR Compliance Directory.

Pixalate has cross-referenced apps that reference APEC CBPR in their privacy policies with companies listed in the CBPR Compliance Directory. The list of all applications with APEC CBPR terms is broken down into those that appear in the Compliance Directory and those that do not.

What is APEC CBPR and why is it important?

The APEC forum is the leading organization in the Asia Pacific region that facilitates trade and investment, economic growth and regional cooperation. The APEC Cross-Border Privacy Rules (CBPR) system is a voluntary, enforceable, accountability-based certification that enables the transfer of personal data between the nine participating economies. The participating economies are: AustraliaChinese Taipei, Canada, Japanthe Republic of Korea, Mexico, Singaporeand United States.

According to CBPR Compliance Directory, there are 49 certified companies. Once a company joins the system and is certified by a third-party accountability agent, the certification becomes legally enforceable by the PEA in the economy in which the company was certified. If a company falsely states that it participates in the APEC CBPR system, the PEA can take legal action against the company.

About Pixelate

Pixalate is the market leading fraud protection, privacy and compliance analytics platform for connected television (CTV) and mobile advertising. Pixalate works 24/7 to protect your reputation and increase your media value by offering the only system of coordinated solutions across Display, App, Video and OTT/CTV for better detection and elimination of advertising fraud. Pixalate is an MRC-accredited service for sophisticated invalid traffic detection and filtering (SIVT) across desktop and mobile web, mobile apps, and OTT/CTV advertising. www.pixalate.com


The contents of this press release reflect Pixalate’s views regarding factors that Pixalate believes may be helpful to the digital media industry, as well as those seeking the adoption of consumer privacy protections. internationally recognized data. All data shared is based on Pixalate’s proprietary technology and analytics, which Pixalate continually evaluates and updates. Any reference to outside sources should not be construed as an endorsement. Pixalate’s opinions are just that, opinions, which means they are neither facts nor guarantees. Pixalate does not independently verify third party information. Pixalate shares this data not to question the position or reputation of any entity, person or application, but rather to report results and trends regarding applications available for download on the App Store. official Apple and the Google Play Store.

The fact that an app developer’s registration company is located in one of the nine APEC CBPR economies does not necessarily mean that the company is certified. An application developer with a registration company located in a non-APEC CBPR economy can be certified if it is an affiliate or subsidiary of a company located in an APEC economy CBPR which has extended the scope of its certification to the affiliate or subsidiary. Pixalate does not assert that companies falsely claim APEC CBPR certification.

Contact: Liz Margolis, [email protected]

SOURCE Pixalate

Lance B. Holton