Guideline 5.1.1
Guideline 5.1.1(iii) - Privacy: Requesting Unnecessary Permissions
Our Take
Apple is rejecting your app because it requests access to system permissions (camera, microphone, contacts, location, photos, etc.) that are not relevant to the app's core functionality. Guideline 5.1.1(iii) enforces data minimization — your app should only request permissions it genuinely needs to deliver its primary features. This rejection is triggered when the reviewer cannot find a clear connection between a requested permission and a visible feature. For example, a calculator app requesting microphone access, a weather app requesting contacts access, or a note-taking app requesting camera access without any photo feature in the app. Even if your app does use the permission for a secondary feature, if that feature is not discoverable during review, the rejection will happen. The root cause is usually one of: (1) a leftover permission from development or a removed feature, (2) a third-party SDK that declares permissions your app doesn't actively use, or (3) a feature that uses the permission but isn't easily discoverable by the reviewer. The fix depends on which case applies — remove the permission, strip the SDK declaration, or make the feature more discoverable and explain it in review notes.
Resolution Guide
**Audit your Info.plist** — List every `NS*UsageDescription` key in your Info.plist. For each one, identify the specific feature that requires it.
**Remove unused permissions** — If a permission has no corresponding feature, remove the `NS*UsageDescription` key from Info.plist. This prevents the system from prompting the user.
**Check third-party SDK entitlements** — Some SDKs (e.g., Facebook SDK, ad SDKs) declare permissions in their podspec/package manifest. If you don't use those SDK features, check if the SDK offers a 'lite' version or a build flag to exclude those capabilities.
**Make hidden features discoverable** — If the permission IS needed for a real feature, ensure the reviewer can find it. Add a note in the App Review Notes field with exact steps to reach the feature.
**Write clear purpose strings** — For permissions you keep, ensure the NSUsageDescription text clearly explains what feature uses the permission and why.
Prevention
Example Rejection Email
Consider Appealing
Appeal if the feature exists but was not discovered by the reviewer. Provide detailed reproduction steps showing how to reach the feature that requires the permission, and include screenshots. Otherwise, remove the unused permission and resubmit.
Before & After
Note-taking app's Info.plist includes NSCameraUsageDescription, NSMicrophoneUsageDescription, and NSContactsUsageDescription — but the app has no camera, voice, or contacts features
Info.plist only contains NSPhotoLibraryUsageDescription (for inserting images into notes) with a clear purpose string: 'Select photos to insert into your notes'
What changed: Only request permissions your app actively uses. Remove SDK-inherited or leftover permissions from Info.plist.
Community Solutions · 0
Sign in to share your solution.
More Guideline 5 (Legal) rejections
- Guideline 5 - Legal: Remove Watermark Feature
- Guideline 5.1.1 - Data Collection and Storage: Incomplete Privacy Manifest
- Guideline 5.1.1 - Data Collection and Storage: Missing Purpose Strings
- Guideline 5.1.1 - Data Collection and Storage: Privacy Manifest Missing
- Guideline 5.1.1 - Data Collection and Storage: Privacy Nutrition Label Mismatch
- Guideline 5.1.1 - Data Collection and Storage: Privacy Policy