DSIT publishes updates to Code of Practice for App Store Operators & App Developers
This voluntary Code of Practice, underpinned by eight security and privacy principles, sets out practical steps for App Store Operators and App Developers to protect users.
Originally published in December 2022, the Code of Practice has now been updated to incorporate operator feedback which was gathered during the original nine-month implementation period and looked at progress being made as well as barriers to implementation. The changes center around:
- providing additional guidance and clarification on what is required for several provisions;
- adding an appeals process for developers; and
- signposting more to international standards.
In order to support the implementation of the revised Code of Practice, DSIT has extended the implementation period to 30 June 2024. This extension is to provide stakeholders with additional time to absorb and incorporate these minor changes; and DSIT also intends to use this period to increase its engagement with developers and operators and expand monitoring and evaluation activities.
Indeed, after the June 2024 deadline, DSIT will review adherence levels to the Code of Practice and make a policy recommendation to the minister on next steps.
You can view the full updated Code of Practice for App Store Operators & App Developers here.

Jill Broom
Jill leads the techUK Cyber Security programme, having originally joined techUK in October 2020 as a Programme Manager for the Cyber and Central Government programmes. She is responsible for managing techUK's work across the cyber security ecosystem, bringing industry together with key stakeholders across the public and private sectors. Jill also provides the industry secretariat for the Cyber Growth Partnership, the industry and government conduit for supporting the growth of the sector. A key focus of her work is to strengthen the public–private partnership across cyber to support further development of UK cyber security and resilience policy.

Annie Collings
Annie is the Programme Manager for Cyber Resilience at techUK. She first joined as the Programme Manager for Cyber Security and Central Government in September 2023.

Tracy Modha
Tracy supports the marketing of several areas at techUK, including Cyber Exchange, Central Government, Cyber Resilience, Defence, Education, Health and Social Care, Justice and Emergency Services, Local Public Services, Nations and Regions and National Security.