Ask HN: Apple shutted down our 30k/mo business. What now?
I & my partner launched an app a year ago. It took half a year to build something sustainable and month ago we finally reached 30k / mo profit. Yesterday after technical release (just to change title in the AppStore) the app got rejected. We didn't violate any concrete guideline, Apple Review Team just decided that we use VPN in an anapproved manner. We use VPN to analyze traffic and show reports to the user. Of course users are uknowledge and ok with this solution. Needless to say that that dozens of our competitors use exactly this solution but apparently it’s not enough for Review Team.
Now I'm lost and don’t know what to do. Situation seems unfair. How come that developers give away half of their earnings to the monopolist platform and are still treated like kids. I mean, people will lose jobs and funds just because of "unapproved way" of using public (!) API. Honestly I liked this platform and I invested a lot into it but I'm sure I will stay away now.
Any thoughts or advices?
88 comments
[ 4.4 ms ] story [ 169 ms ] threadPublish under a different account?
Move to Android?
Sue?
Not allowed and easily detectable
> Sue?
For what?
Even the basic Developer Program License Agreement includes this language:
"Apple reserves the right to change, suspend, deprecate, limit, or disable access to the Apple Services, or any part thereof, at any time without notice (including revoking entitlements or changing any APIs in the Apple Software that enable access to the Services). In no event will Apple be liable for the removal of or disabling of access to any of the foregoing."
The revenue sharing agreement further reinforces that you can't hold Apple liable for anything.
It's Apple's store and Apple's customers. They display your software in the marketplace and provide cryptographic signing so that end users can install it, but they can stop doing that at any time with no justification needed.
A good example is a paid parking lot where it might say something along the lines of "by parking in this lot, you accept that 'parking company' is not liable for any theft, loss or damage of property." however if say a light fitting fell from the ceiling and damaged your car and you were able to prove negligence by the parking company then you may hold them liable for the damage.
Various companies try all kinds of unenforceable contract terms on the basis that the average Joe believes that he has to stick to whatever he agreed to. There was an amusing post on a legal blog where they went around NYC pointing out the hundreds of unenforceable contract terms that we are exposed to everyday.
[0]: https://motherboard.vice.com/en_us/article/a3yadk/apple-sued...
[1]: https://consumerist.com/2012/04/17/seattle-man-victorious-ov...
What’s illegal or unenforceable about this agreement between two corporations?
If Apple was just a random company only running an app store, it'd be different.
But Apple has a monopoly on app stores for iOS and macOS by preinstalling them, similar to Microsoft preinstalling Internet Explorer.
As a result of being the only possible marketplace for these platforms, Apple can't just act at its own discretion.
And the fact is that Apple has acted on its own discretion possibly thousands of times when it came to the App Store. In fact they've been doing it since day 1. They have banned pornography, gambling, cryptocurrencies etc and they will continue to ban more in the future.
It's 100% legal and their right.
EDIT: In future, I suggest you invest time in establishing relationship with these teams (like going to WWDC), especially when you are betting your entire revenue on such marketplaces.
- Be active in Q&A sessions and community events. They might also have an expert community that you can join [1]
- Participate in alpha programs and connect with the product managers
- If your app is widely adopted, offer them to do a customer success story about unique iOS feature that you might have used. If you reach that stage, they are unlikely to ban your app without warning.
[1] For Android - https://developers.google.com/experts/all/technology/android
You can both appeal the reviewer's decision and have a conversation with the reviewer, and if that doesn't work, you appeal to apple's app review board.
In the few times we've experienced rejection, the review board was the most useful option, and always approved us in the end.
Few points to expect:
- it was not uncommon to get cited completely different "violations" as you go through various appeals
- "other apps do it" doesn't get you far
- process can take a while but perhaps we made a mistake of not going directly to the Apple app review board and stating our case there. We got approved in a few days after that.
Is your app providing a proper VPN service or is it just for website analytics ?
The way YOU view your product is one thing- but how you market and present the app to customers is another.
A spammer might view their spam as "marketing email", but that doesn't make it so just because of their viewpoint
But maybe you could let us know more about what the problem is exactly? Here's Apple's guidelines for VPNs: https://developer.apple.com/app-store/review/guidelines/#vpn...
Sounds from what you said the user is informed about what data you are collecting, but what other part of the guidelines are you potentially breaking here?
I can assume that your app falls under this part of 2.5.1:
> Apps should use APIs and frameworks for their intended purposes and indicate that integration in their app description. For example, the HomeKit framework should provide home automation services; and HealthKit should be used for health and fitness purposes and integrate with the Health app.
So you're running a VPN using the NEVPNManager API, and I'm guessing your app does something such as monitor traffic or speed or something like that by routing all traffic through a VPN so you can "listen in" to get your reports.
Apart from appealing the ruling, I think maybe if you could be more specific as to what your app is collecting and why, someone here might help with figuring out an alternative way of doing that so that you can get your app back in the store.
I always had an impression that the current version stays up.
Correct.
In a company I used to consult for, Apple has taken up 9 out of the last 12 months of their product roadmap after introducing new rules, and then revoking them. They were reasonable to talk with, but... yikes. Worst part was all their competitors just ignored the rules and cried until Apple reversed them, so they were just massively punished by Apple for earnestly following the rules.
Do what others suggest to beg Tim Cook for mercy. Hopefully someone will help you to reinstate your app.
Step 2:
Rethink your business model. It will happen again. Possible change - provide app building services to others. You have expertise. You can deliver. You’ll have multiple customers. Your business won’t rely on apple or Facebook of YouTube mercy.
Why bother ?
This app is capturing website history which would be invaluable to third parties. Given the current environment (with Cambridge Analytica and Facebook) there is no way any normal, sensible company wouldn't crack down on apps like this given half the chance.
It sucks for the guy if his app isn't sending data to third parties but you can't blame Apple for not trusting him.
Foursquare is capturing location history, which it admits to selling to third parties.
I’m waiting for Apple to remove them from the app store.
But the fact is this VPN app looks awfully similar to those dodgy apps we saw on Facebook which were pretending to be some useful app but were secretly selling your data to third parties. And since he is just a small time app developer we (and by extension Apple) can't completely trust that he isn't doing that.
Also your competitors might be a step away from getting banned. If you are doing shady stuff then I’m happy Apple is taking action. 30k/month, jobs, my company, etc... is not going to cut it. They are just sensational arguments.
Yes, I agree, the post is emotional, but we do not hiding, selling history or do something related.
Does your product function as a VPN or is it just a website analytics tool ?
you are doing a disservice to this noble noun
I don't think iOS is the leading, let alone monopoly, platform for smartphones in any market is it?
Also I did not say that the platform is flawed, or criticised the fact that Apple vets applications. If anything I would like Apple to test the applications even more because there is still a lot of malware and crap apps there. (e.g.: fake VPN apps, virus scanners and whatnot).
Not to say that the platform is flawless, there is a genuine problem if you wish to create an app that Apple has not yet thought of because even if it might be technically possible, the rule 2.5.1 is there against you. In this particular case the developer has wrestled the VPN API to extract browsing patterns (from what I understand). This is not something you should do with a VPN, rather it should be done as a browser extension but hey, iOS does not have that.
[1]: https://moz.com/blog/apple-vs-android-aov
These juicy users willingly chose the Apple ecosystem, precisely because it's a safe and trustworthy walled garden, in contrast with Android's offering.
Complaining about this is like a door to door salesman protesting to be let into a gated community to sell his crap. The people living in the gated community chose it precisely because they don't want any of your crap (among other things).
Yeah maybe it's a 'sort-of' monopoly in some analogy kind of way, but it's not actually 'monopolist' is it? That's just not true.
What they really mean is that the only monopoly Apple have is the monopoly on the exact kind of customers that this team would like to sell to. Well, too bad for them. 'Monopolist' implies some kind of legal or ethical issue, and there isn't one in my opinion, so let's not muddy the waters or imply anything by using the word.
Where is your revenue coming from?
I don't mean to troll, but the answer to that question lines in the uncomfortable economic reality. Apple did the hardwork to centralize a massive user base on their vertically integrated devices and protocols. And you the developer has chosen to buy into that closed door, centralized, ecosystem for easier profits and access to their users.
Don't like it? Help the world move towards a free and open model.
Outside that is freedom to travel wherever you want to without restriction.
> 2.5.1 Apps should use APIs and frameworks for their intended purposes and indicate that integration in their app description.
It is all encompassing and actually often violated. But it not new that apple shuts down apps that use APIs for novel purposes. Most famous is probably the usage of VoIP or background music playing in order to keep apps from sleeping.
Nevertheless, it is never a good idea to use an API for something that goes out of the line. It is where the innovation and money is, but the risk of getting shut down like you did is real.
Unless they allow people to sideload apps like on Android, the situation is unlikely to change.
A VPN is not necessary to do that. This might leave a reviewer in doubt the VPN doesn't obscure other rule breaking.