# Legal questions around Social Logins ## Facebook The Facebook SDK logs the following information: - **Explicit events** - information from events that the advertiser explicitly configures their app to send, such as "AddtoBasket" or "logPurchase", along with any additional parameters provided. - **Implicit events** - information from events that are logged implicitly if the advertiser chooses to make use of other features of the Facebook SDK, such as integration with Facebook Login or the "Like" button. - **Automatically logged events** - basic interactions in the app (e.g. app installs, app launches) and system events (e.g. SDK loading, SDK performance) that are collected automatically. Developers can disable automatic logging and log explicit events manually instead (instructions here for iOS and Android). - **Facebook app ID** - a unique identifier provided by Facebook to reference the advertiser's website and mobile app. - **Mobile advertiser ID** - the iOS IDFA or Android Advertising ID. - **Metadata from the request** - the mobile OS type and version, the SDK version, app name, app version, the device opt-out setting, the user agent string and the client IP address. It also collects the following device related metrics: time zone, device OS, device model, carrier, screen size, processor cores, total disk space, remaining disk space. The Facebook SDK collects the following information when you use Facebook Login: - **App Events**: This covers generic App Events (e.g. App Install, app launch) and other standard logging for product metrics (e.g. SDK loading and SDK performance). Note that some of these events (e.g. App Installs, app launches etc.) are automatically logged as mentioned above. Developers can choose to disable automatic logging and log explicit events manually instead (instructions here for iOS and Android). - **Configuration data**: After a user has logged in, the SDK makes periodic background requests to manage the lifetime of the access token automatically. - **Error information**: The SDK captures error information, including during initialisation of the SDK, which may include a user ID of individuals who are logged in to Facebook. - **Short-term data**: The SDK measures some user activity for purposes of managing fraud and abuse. This data is only retained for a very short period for those not logged in to Facebook. Use of this information about individuals with a Facebook account is governed by Facebook's [Data Policy](https://www.facebook.com/micro_site/url/?click_creative_path[0]=link&click_creative_path[1]=drawer&click_from_context_menu=true&country=DE&destination=https%3A%2F%2Fwww.facebook.com%2Fbusiness%2Furl%2F%3Fhref%3D%252Fpolicy.php%26cmsid%3D208072886586010%26creative%3Dlink%26creative_detail%26create_type%26destination_cms_id%26orig_http_referrer%26search_session_id&event_type=click&last_nav_impression_id=3ChFEfeQnfrEnztj8&max_percent_page_viewed=95&max_viewport_height_px=796&max_viewport_width_px=1507&orig_request_uri=https%3A%2F%2Fwww.facebook.com%2Fbusiness%2Fm%2Fone-sheeters%2Fgdpr-developer-faqs&primary_cmsid=208072886586010&primary_content_locale=en_GB&region=emea&scrolled=true&session_id=1wz46p3FxfKpGIPdt&site=fb4b&extra_data[view_type]=v3_initial_view&extra_data[site_section]=m&extra_data[placement]=%2Fbusiness%2Fm%2Fone-sheeters%2Fgdpr-developer-faqs). More info can be found on this [link](https://www.facebook.com/business/m/one-sheeters/gdpr-developer-faqs) ## Google Google API services terms of use [link](https://developers.google.com/terms/api-services-user-data-policy) ### Google Sign-In for iOS and macOS SDK Apple requires developers publishing apps on the App Store to disclose certain information regarding their apps' data use. Apple has announced that these disclosures are required for new apps and app updates starting December 8, 2020. This page explains the Google Sign-In for iOS and macOS SDK's data collection practices to make it easier for developers to answer the questions in App Store Connect. To enable your users to sign in quickly and securely, the Google Sign-In for iOS and macOS SDK may collect the following: - User identifier, to record OAuth grants created with the user's consent. - IP address, which may be used to estimate the general location of a device for fraud prevention. Source: https://developers.google.com/identity/sign-in/ios/app-privacy ## TikTok TikTok general terms of use [link](https://www.tiktok.com/legal/page/eea/privacy-policy/en) LoginKit overview [link](https://developers.tiktok.com/doc/login-kit-overview/) ## Apple Sign in with Apple get started [link](https://developer.apple.com/sign-in-with-apple/get-started/) There is no separate SDK for the Sign in With Apple, so there is no data collection before triggering the authentication.