Impact of IDFA change in iOS 14 on userlevel data collection

Apple announced that users need to opt in to share the information with 3rd parties.

I am confused as to how will this impact user level data collection in Snowplow?

Can someone throw more light on this? Thanks

Hi @Sachin_Deven

After reading through it appears the crux of the article is with 3rd party sharing, for example targeted ads, with the exception of fraud detection. If you’ve done a first party implementation I don’t think this will be an issue.

There is also misinformed rumblings about Safari blocking trackers like Google Analytics. This is infact incorrect, the ITP blocks CORS/3rd party and Safari has been doing this since 2017.

More here:

1 Like

Hi @Sachin_Deven

We’re currently putting together a blog post that covers this in more details but to give a quick overview.

Firstly, we’ll be offering advice on how to appropriately set AppTrackingTransparency when using the Snowplow iOS Tracker. You’ll basically need to set up NSUserTrackingUsageDescription which we will offer advice on soon, from a Snowplow point of view.

The tracker is also currently capable of collecting the IDFA, however from iOS14 this will prompt the user before being accessible. This will likely reduce the number of events that will contain the IDFA. Here is an interesting Forbes article on this.
The iOS tracker does sessionisation client side and sends a userId value in the client_session context. This is tied to the applications install and generally a good way to understand how a specific user is using your application (as apps are not reinstalled very often) but it does not invade on a users privacy in the same way collecting their device specific IDFA does.

The last thing to concern yourself with in iOS 14 are the ITP changes that are coming. On the whole these won’t really effect Snowplow, particularly if you have your Snowplow collector set up on your domain as a first party collector. Safari restrictions that exist today will still exist with the core difference being the privacy report to make it more transparent to the end user what ITP is doing. This is a good thing.

One thing that will change though, is that ITP will now take effect in all WKWebViews. This means third party cookies will not persist and JS set cookies will only persist for 7 days inside Web Views. This against, doesn’t have a huge impact if using Snowplow on your own domain however it is worth noting if not.

If you don’t currently use WKWebView, then I believe the current plan states if you want to publish application updates after December 2020 then you must have upgraded to WKWebView.

And lastly, if you are using WKWebView then you’re going to want to look into App-Bound Domains to use most of the powerful features in WKWebView and to protect your users.

Here are a couple of WWDC videos you might also find interesting:

Check out Build trust through better privacy - WWDC 2020 - Videos - Apple Developer (On this topic, watch for a couple of minutes from 15:00 and a couple more from 26:30)

Discover WKWebView enhancements - WWDC 2020 - Videos - Apple Developer (Around 24 minute mark is probably most interesting on this topic)