No.

(Not even in the EU.)

As of: 2/27/2025

Subscribe via Atom/RSS

Contents

"Sideloading" in the EU

๐Ÿ˜ฎ Wait, I thought the EU mandated that?

The Digital Markets Act is a recent EU antitrust law with the stated goal of making digital markets "fairer and more contestable". Article 6(4) reads as follows:

The gatekeeper shall allow and technically enable the installation and effective use of third-party software applications or software application stores using, or interoperating with, its operating system and allow those software applications or software application stores to be accessed by means other than the relevant core platform services of that gatekeeper. The gatekeeper shall, where applicable, not prevent the downloaded third-party software applications or software application stores from prompting end users to decide whether they want to set that downloaded software application or software application store as their default. The gatekeeper shall technically enable end users who decide to set that downloaded software application or software application store as their default to carry out that change easily.

The gatekeeper shall not be prevented from taking, to the extent that they are strictly necessary and proportionate, measures to ensure that third-party software applications or software application stores do not endanger the integrity of the hardware or operating system provided by the gatekeeper, provided that such measures are duly justified by the gatekeeper.

Furthermore, the gatekeeper shall not be prevented from applying, to the extent that they are strictly necessary and proportionate, measures and settings other than default settings, enabling end users to effectively protect security in relation to third-party software applications or software application stores, provided that such measures and settings other than default settings are duly justified by the gatekeeper.

Since Apple was designated as a gatekeeper under the DMA, and its mobile operating systems iOS and iPadOS were designated as core platform services, Apple is obligated to comply with the above rules. As a consequence, support for third party app stores in the EU was introduced with iOS 17.4 in March 2024.

Unfortunately, the terms of Apple's compliance leave much to be desired, and "sideloading", as per the conventional definition, is still not available on iOS:

  • All apps and app updates distributed outside the App Store still must be manually reviewed by employees at Apple, approved, and "notarized", else iOS will reject their installation. The criteria Apple uses to determine whether or not to approve the app is a subset of the App Store guidelines (with an emphasis on privacy and security).
  • Furthermore, on top of the $100/yr Apple Developer subscription required to submit apps for notarization, Apple also collects a significant "Core Technology Fee" from developers distributing outside the App Store, easily totaling to a much higher percentage cut than the App Store's 30%, and possibly creating a net loss or even bankrupting the app developer, making alternative distribution an unattractive option in most cases. (Note that fee waivers are available for fully non-commercial apps.)

The DMA also does not enable certain types of apps which are already available through unofficial sideloading methods:

  • Apps that require JIT for performance, such as advanced emulators and virtual machine apps, with the exception of approved web browser apps (of which there are currently none) [1]
    • UTM is an example of such an app.
  • Apps that use private APIs or OS frameworks in an "unintended" manner (as per notarization guideline 2.5.1)

Due to the aforementioned caveats, I will henceforth be referring to these apps as "alternative apps" rather than "sideloaded apps".

Apple believes that its notarization guidelines for alternative apps do not violate the DMA due to the exception provided in Article 6(4), which allows gatekeepers to take measures to ensure that alternative apps don't "endanger the integrity of the hardware or operating system", if said measures are "strictly necessary and proportionate".

Not everyone agrees with Apple's interpretation of the DMA, however. Epic Games has described Apple's changes as "malicious compliance". The Free Software Foundation Europe has released multiple statements arguing that Apple's notarization process is not in compliance with the DMA, since (1) third party apps on iOS don't possess the capability to compromise the integrity of the OS and (2) on macOS, Apple's other computing platform, users can choose to install apps that aren't notarized by Apple (provided they accept the risks involved), yet macOS still manages to provide a relatively secure computing environment. It should also be noted that while users are highly encouraged to only run notarized apps on macOS, the notarization requirements for macOS are much less stringent and don't impede legitimate (non-malicious) developers in any meaningful way, unlike the iOS requirements.

As of the time of writing, the European Commission is still in the process of enforcing the DMA and interpreting compliance obligations. A non-compliance investigation against Apple was opened in June 2024 regarding "the contractual requirements imposed on alternative app developers" such as the Core Technology Fee, and another investigation regarding "the checks and reviews put in place by Apple to validate apps and alternative app stores to be sideloaded" may be opened soon.

To ensure compliance, Apple should follow in the footsteps of other digital gatekeepers and provide a means for advanced users who accept the risks to sideload freely. For examples of how Apple could do this without impacting non-technical users, see here.

๐Ÿง‘โ€๐Ÿ’ป Can hobbyists take advantage of the EU's DMA today?

While the DMA does not (as of the time of writing) enable true sideloading, it does theoretically enable opportunities for hobbyist developers to create apps that would have otherwise been rejected. It may also allow hobbyists with no intention of distributing to create personal apps for their own devices, provided they are willing to polish their apps to the extent that they meet Apple's notarization requirements. Remember, Apple will be reviewing the app under the impression that you are attempting to release it publicly to iOS users around the world, so the requirements are designed with that in mind.

With that being said:

  • Apple has waived the Core Technology Fee for non-commercial apps (though not for app stores [2]) that make no profit whatsoever, so the only fee you would pay is the $100 annual Apple Developer fee, which is required in order to submit apps for notarization.
  • Apple has waived the "minimal functionality" portion of the App Store guidelines for alternative apps, which would otherwise forbid apps that aren't "particularly useful, unique, or app-like".
  • Once an app is notarized, the signature does not appear to expire, and that specific build of the app can be installed and used indefinitely on any iOS device in the EU. You would however need to maintain your Apple Developer subscription and ensure ongoing compliance with the notarization guidelines in order to issue updates for your app.

In general, it seems as though Apple may approve hobbyist apps even if they have no clear purpose for a general audience and are only intended to be used by the developer. The limits of what Apple is willing to approve for alternative distribution have yet to be tested. Unfortunately, due to time-based expiry of all "development" certificates (including paid ones), there is currently no better way to develop personal apps just for yourself, as the only (official) alternative is paying the $100 Apple Developer Program fee every year into the foreseeable future just to keep your app from expiring (even if you aren't actively updating it). It's truly a shame that Apple has created a unique situation where hobbyist developers have no better option than to pester Apple employees with pointless manual reviews just to create apps for their own personal use, which won't ever be installed on other user's devices.

โš ๏ธ

If you're planning on publishing apps to the App Store in the future, please note that it's unclear if it's possible to switch back to the (arguably better) non-EU terms after you've already agreed to the EU terms.

You don't have to be located in the EU to submit apps for alternative distribution inside the EU. If you want to start experimenting with alternative apps right now despite the current limitations: AltStore PAL is an officially approved third party app store available for free, allowing the installation of notarized apps from any source. You may review their documentation here. You'll need an Apple Developer subscription, and you'll need to accept the alternative EU terms.

๐ŸŒŽ Can users outside the EU access alternative apps?

As a developer, you don't have to be in the EU to officially submit apps for alternative distribution inside the EU.

However, in order to actually install those apps, you need to be in the EU (or at least, your device needs to believe that you are). Apple utilizes hardware sensors to determine the user's geographical location in order to check eligibility for alternative apps and marketplaces as required in the EU, in addition to requiring an Apple ID registered in the EU.

It has been demonstrated to be possible to spoof some of these checks and access EU-exclusive features such as alternative apps outside the EU on iPhones and iPads. You may read my blog post about it here. (There are no guarantees that Apple won't make it more difficult to spoof these checks in the future, so you shouldn't rely on this.)

Once a device detects that it has left the EU, alternative apps that have already been installed will continue to work, but they will no longer receive updates after a 30-day grace period until the device moves back to the EU.

Something else that should be noted is that users from around the world can benefit from the competition that alternative app stores bring to Apple's store in general. In fact, this has already happened; Apple's unexpected reversal of its long-standing policy against game console emulators was most likely a result of the Digital Markets Act, as it removes one of the primary incentives users would have otherwise had for installing Riley Testut's AltStore and his popular "Delta" emulator.

๐Ÿ“ฑ What is "sideloading"?

Sideloading is simply the act of installing apps on your computing device that haven't been explicitly reviewed and approved by the company who made the device (or the operating system running on it). Traditionally this has just been called "installing software", because it used to be the standard method before the advent of centralized app stores.

It's unclear exactly when the term (as per the above definition) was first introduced into the general discourse. But according to Google data, it was most likely around 2009 at the earliest:

Google Trends worldwide interest in "sideloading" from 2004-present

(Not coincidentally, Apple launched the iPhone in 2007.)

It's quite unfortunate that a term with a negative connotation was coined to describe an inherently neutral activity. If I was being conspiratorial, I'd say it was all part of an elaborate profit-seeking plot by Apple to create FUD surrounding the topic. I'd tell you that "sideloading is the new jaywalking".

But the truth is probably more nuanced than that. Malware used to be much more prevalent (and damaging) than it is today. It's getting harder and harder for attackers to convince people to execute malicious payloads on their devices, and the App Store most likely has something to do with that. Attackers have adapted to their new environment, and are largely migrating to other techniques that aren't so easily mitigated by software locks, such as phishing and cold call scamming. That being said, our computing devices are more secure than ever from the average user's perspective.

There's no denying that the model has begun to shift from users downloading or purchasing software directly from developers, to users downloading software from an "app store" middleman. Users delegate trust to the app store to vet the software they download to ensure it works properly, isn't malicious, and isn't accessing their data without their consent. For the average user, this creates a safer environment within which they can perform their computing tasks.

The App Store model clearly has real benefits for users. It would be dishonest to claim that protecting the end user's privacy and security is Apple's only motivation for pushing this model so heavily, though. There's of course enormous incentive created by the enormous profit generated through forcing everyone to use a centralized store. Apple's Services division, which includes the App Store, is their second largest, and has remained that way since Q3 2017. In Q4 2024, Apple made 26% of their revenue from Services. The Services division has been consistently creeping upwards over time, taking away from hardware's share year after year. [3]

We should keep in mind that this didn't happen overnight. When the iPhone was released in June 2007, it didn't have an app store, and there was no (official) method to install new apps. Steve Jobs described the new device "merely" as a "widescreen iPod with touch controls, a revolutionary mobile phone, and a breakthrough Internet communicator" during his unforgettable 2007 WWDC presentation. The (technically arbitrary) software limitations imposed on Apple's new OSX-powered portable-computer-but-not-advertised-as-such did not stand in the way of its success. People were so blown away by the iPhone, that any software shortcomings could easily be excused. The iPhone SDK was released in March 2008, alongside the announcement of the App Store, and it was confirmed that the App Store would be the exclusive method for distributing apps on the platform.

It's been 17 years since the release of the iPhone, and needless to say, smartphones and other mobile computing devices have changed the world. Smartphones are no longer a "nice to have", but rather an essential item we carry with us at all times, wherever we go. We experience anxiety when we realize we forgot to bring our smartphone with us.

Third party app support on iPhone, competition from Android, and talented hackers allowed developers to begin pushing the limits of what these "phones" could do. Apple may not have realized it at the time, but it didn't just invent the modern smartphone in 2007; it invented the modern computer. iPhone OS became iOS, then iPadOS. Today, the iPad Pro is advertised as all but a computer! The latest iPads even use the same processors as the latest Macs.

The iPhone paved the way for the app store model and other modern computer security features which are now considered baseline, such as full device encryption and verified/secure boot. With each new iOS security feature rolling out, Apple challenged the rest of the industry to improve their own security and privacy protections. All mainstream operating systems, including Windows, macOS, Chrome OS, and Android now implement an app sandbox in some way (to varying degrees of success), something the iPhone did first.

If the entire industry is moving towards Apple's approach, then we should probably start thinking about what that means for the future of personal computing. To my knowledge, we've never seen a (conventional) "computer" that isn't user-programmable enter the mainstream market. We are now, though, seeing non-conventional computers which are many times more powerful than yesterday's conventional computers on paper, but are not user-programmable. We're becoming more tolerant of artificial limitations imposed by the operating systems we're forced to run on these devices, because we're told that it's the only way we can remain secure.

I think that, for the average user, these limitations are perfectly acceptable, and indeed preferable. But at the same time, I don't think we should leave powerusers and developers in the dust as we craft this new world of secure computing. Apple has made some brilliant, ultraportable, and remarkably powerful computing devices, but the OS that runs on them is preventing users from realizing their true potential, and it's kind of sad. Implementing advanced features such as sideloading in a way that prevents social engineering attacks convincing non-technical users to enable them is non-trivial, but definitely possible, and absolutely vital if we are to avoid redefining the modern "computer" as something entirely different.

๐Ÿ’™ What are benefits of sideloading?

Non-exhaustive list of sideloading use cases and benefits:

๐Ÿ”’ Is sideloading safe?

Sideloading is generally safe if:

In fact, some of the most secure systems in the world, arguably more secure than iOS, support sideloading.

Even among those who sideload, most prefer to offload these trust decisions to a third party app store. This means you only have to make a relatively high-stakes trust decision for each app store you download, which only happens once or twice in most cases. On Android, most sideloaded apps are obtained through F-Droid, a trusted third party app store that only serves open source apps built using their own (also open source) infrastructure. On Windows, most sideloaded games are obtained through Steam, a trusted third party app store that vets each game before making it available.

Ideally, third party app stores work with the underlying OS and provide the user with sufficient information about each app's author, what it does, and what sensitive data it may request access to, if any. For example, F-Droid provides a list of any Android permissions that an app may request on the app details page of every app in the store. F-Droid further provides a list of "anti-features" for each app, warning users of potentially undesirable behavior such as advertising or exchanging data with proprietary network services. AltStore, an alternative app store for iOS, provides information about permissions that each app may request as well. Personally, I trust F-Droid more than the Play Store or App Store, and most of my favorite apps on my Android phone come from there.

Permission details on AltStore and F-Droid app listing pages

iOS and Android follow a principle of least privilege approach for third party apps (and usually for system apps and background processes as well). They both enforce a strict sandbox on all third party apps, regardless of where the apps were obtained from. An Android app does not have access to any sensitive data or resources by default. iOS works similarly. Users must explicitly grant access to any sensitive data or resources. As such, you can be fairly confident that, even if you accidentally installed a malicious app, it isn't able to access any sensitive data that you didn't explicitly provide it. iOS and Android apps also aren't allowed to interfere with the operating system itself, so you can safely and easily uninstall a malicious app without worrying about any lingering effects afterwards. Somewhat ironically, despite iOS refusing to allow sideloading, it's actually among the safest operating systems to sideload on.

Sideloading may not be safe for users who are not technically literate or are generally gullible, because they may be tricked into installing a malicious app and then granting said app permission to access sensitive data or resources. (Note that browsing the web carries similar risks, so all users of computing devices would ideally receive some baseline internet safety training.)

This is often touted as a reason why iOS should not support sideloading at all, but I wholeheartedly disagree. Even if sideloading isn't made generally available to all users, it can still be made available to technically-inclined users only. This isn't a trivial task, and requires a bit of thought to implement correctly, but it's very much possible and has already been done before.

๐Ÿค” What would it mean for iOS to "have" sideloading?

For the purposes of this website, an operating system supports sideloading if it provides some means for technically-inclined end users to permanently install native apps [4] without prior approval from any company or organization, either free of charge, or for a reasonable one-time fee.

An operating system does not need to endorse, recommend, or make it easy to sideload in order for it to support sideloading as an option. Operating systems that only allow advanced users to sideload through scare prompts, hidden "development" modes, or any other methods still count. Operating systems that require a one-time payment (within reason) to unlock sideloading, or which require you to accept some basic terms (within reason) before you enable sideloading would also count. Operating systems employing any combination of the described techniques, or any other techniques, to discourage sideloading for the average user, or to prevent social engineering attacks convincing users to enable sideloading, still count.

For example, we consider Chrome OS to support sideloading.

Apple would not have to make sweeping changes to iOS in order to qualify; in fact, a minor policy change would be more than sufficient. For example, all it would take to qualify is for Apple to remove the unnecessary expiry dates from development certificates (which can only be used on the creator's own devices, and cannot be used for distribution). They currently expire after 7 days for free accounts, or 1 year for paid accounts.

There are several community-supported unofficial sideloading methods for iOS, but we don't consider those to count, because they aren't guaranteed to continue working through iOS security updates, they aren't authorized by Apple and may break Apple's end user license agreement, and they have significant downsides.

๐Ÿ’ป Do other devices support sideloading?

All mainstream operating systems for computing devices, besides iOS/iPadOS, support sideloading in some capacity.

OS Can sideload? Scare screen(s)? Dev mode only? Must accept terms? One-time fee?
Windows Yes No No No No
macOS Yes Yes No No No
ChromeOS Yes Yes Yes Yes [5] No
GNU/Linux Yes No No No No
Android Yes Yes No No No
iOS/iPadOS No

These operating systems are regarded by security experts as being extremely secure, and yet still support sideloading:

Case study: ChromeOS

ChromeOS is probably the most secure mainstream consumer operating system in the world. It implements a cryptographically verified boot chain which ensures that neither the OS nor any of its components has been tampered with, mandatory full device encryption, and strict sandboxing for all third party code with no exceptions, among many other advanced defense-in-depth security features. All third party native code inside Android apps is isolated using virtualization, and on top of that, the standard Android app sandbox applies.

By default, apps can only be installed through the Google Play Store. To enable sideloading, you need to follow a complex series of steps, agree to some basic terms and conditions, factory reset your device, and enable "developer mode". In addition, every time you reboot the device after enabling developer mode, you'll be reminded by the boot screen that your security is reduced and you will need to confirm that this is acceptable before the OS loads.

ChromeOS developer mode boot warning (via Reddit)

Google created this process to ensure that it's completely infeasible for an attacker to trick someone into enabling developer mode and compromising theirself, while at the same time enabling advanced users to make full use of the hardware they purchased.

I honestly believe that, for better or for worse, this "opt-in developer mode for advanced users only" is the only sustainable approach going forward. All computers are becoming easier to use and more secure than ever before, not just iOS devices, and I think that's a good thing overall, but I also think that there should always be an "escape hatch" for advanced users (and as of the time of writing, there always is, except on iOS).

macOS vs. iOS notarization process

Apple uses the term "notarization" to describe the approval process for apps submitted to third party app stores on iOS, which is confusing because it's they use the same term to describe a very different process on macOS.

On macOS, notarization is an automated review process that performs malware checks and basic security checks on any submitted software, in addition to requiring a verified identity as part of the Apple Developer program. Apple does not impose any guidelines, besides requiring that they are not malicious, on macOS apps submitted for notarization.

On iOS, notarization is a manual review process conducted similarly to the App Store review process. An Apple employee must manually review each app for violations of the iOS notarization guidelines, which are a subset of the App Store guidelines, before it can be distributed on so-called "alternative" app stores. The iOS notarization guidelines include unnecessary rules that impede legitimate apps.

Another important difference between macOS and iOS notarization is that users can choose to run software that hasn't been notarized on macOS, if they accept the risks involved. Of course, Apple highly recommends that users only run software that has been notarized by Apple, and macOS blocks the installation of software that isn't notarized by default. But an option, buried deep within the Privacy & Security settings, is provided, allowing advanced users to run the software of their choice.

The seven step process for opening a non-notarized app on macOS

๐Ÿ‡ช๐Ÿ‡บ Which countries are legislating "sideloading"?

โ„น๏ธ

The following information is provided for informational purposes only. Inclusion in the chart below is not equivalent to an endorsement of the specified bills or regulations. We're aiming to stay non-political here.

Legislation regarding "sideloading" or alternative app stores is currently being developed, considered, or implemented in quite a few countries. TPAS refers to "third party app stores".

Effective as of Country/region Legislation/ruling Allows TPAS? Allows sideloading? Status
11/1/2022 European Union Digital Markets Act Yes No, as of now [6] Implemented
5/24/2024 United Kingdom Digital Markets, Competition and Consumers Act ? ? Passed
Australia Amendment to Competition and Consumer Act 2010 ? ? Proposed
6/12/2024 Japan Act on Promotion of Competition for Specified Smartphone Software Yes ? [7] Passed [8]
United States Open App Markets Act, among others Yes ? [9] Proposed
10/7/2024 United States Epic Games v. Google Yes, on Android for 3 yrs [10] ? [11] Passed

For technical information about the region-locked regulatory compliance features currently implemented in iOS, see the Apple Wiki article on Apple's Eligibility system.

๐Ÿ”“ How do I sideload unofficially on iOS?

โš ๏ธ

You shouldn't rely on any of these methods to keep working indefinitely as Apple continually releases security updates for iOS. The following section reflects the information available as of the time of writing and may not reflect the latest information. Use these unofficial methods at your own risk, and be aware that you might be breaking Apple's EULA.

AltStore

AltStore abuses Xcode's signing service, which is intended for developers to test their apps in a limited capacity before uploading them to the App Store.

Apple provides development certificates lasting 7 days for free accounts, or 1 year for paid accounts. Apps signed this way can only be installed on the developer's registered devices and can't be directly distributed to other users. iOS refuses to launch apps with expired certificates.

AltStore connects to a server running on your computer and automatically requests the re-signing of sideloaded applications every so often, ideally preventing them from ever expiring.

Pros:

Cons:

Jailbreaking

Jailbreaking involves exploiting accidentally-introduced security vulnerabilities in iOS to gain more control over your device. Typically, jailbreaks enable sideloading, in addition to system-level tweaks and modifications.

Pros:

Cons:

You can check if your device can be jailbroken here. (Hint: probably not.)

โ„น๏ธ Who made this website and why?

Hi, I'm Matt. I currently use a Google Pixel (Android) phone, an iPad, and a MacBook Pro. I'll probably switch to iPhone if the answer to the question this site poses ever becomes "yes".

As part of a university project, I recently developed an iOS app that keeps track of your expenses and receipts. It's not polished enough to submit to the App Store, but it would have been quite useful to me personally.

I was using my app on my iPad when all of a sudden it was disabled:

"[App] is no longer available"

I soon discovered that apps you install via Xcode only last for seven days. That didn't seem right to me. My team and I wrote the app from scratch, but it didn't really feel like "our" app, because we're not even allowed to use it on our own devices without asking Apple's cloud service for permission to do so every week into eternity. This was in stark contrast to my experience with my MacBook Pro, for which I've developed numerous utilities and apps for personal use by myself without any issue.

So, I started digging into the topic of sideloading on iOS. This website is the result of my research on the topic. It's mostly factual, but it does contain some of my opinions as well.

๐Ÿ’ก Can I suggest an improvement to this website?

The source code for the website is published openly on GitHub. Since this is a personal site that contains some of my personal opinions, I'd prefer contributions that improve factual accuracy or fix errors over contributions containing your opinions. I may reject any contributions that I don't like.

๐Ÿ“š See also

Here are some essays or articles about sideloading I enjoy:

Here are some articles or statements from digital rights advocacy groups regarding sideloading:

๐Ÿชต Changelog and RSS feed

Atom/RSS feed

View feed in browser

I'll try to keep the website up to date as the status of sideloading and alternative app stores on iOS changes over time. The feed will be updated each time the website changes, and may also include news about sideloading and alternative app stores on iOS, or about legislation surrounding sideloading.

Footnotes

  1. Firefox and Chrome have both decided not to port their browser engines to iOS until it becomes possible outside the EU, since it would require tremendous effort for something that the majority of users will not benefit from. See Mozilla's statement and a Chrome engineer's statement.โ†ฉ๏ธŽ

  2. Non-commercial apps don't have to pay the CTF, but non-commercial app stores, such as AltStore PAL, still do. Despite this, AltStore PAL is currently available for free thanks to a grant from Epic Games.โ†ฉ๏ธŽ

  3. https://www.statista.com/statistics/382260/segments-share-revenue-of-apple/โ†ฉ๏ธŽ

  4. For our purposes, "native apps" are apps that integrate with the OS, have direct access to native platform APIs, and can access any of the device's exposed hardware/software features, with the following caveat: if the device has a default app store, "native apps" need only the level of hardware/software access which is already available to third party apps offered through the default store.โ†ฉ๏ธŽ

  5. "Modifications you make to the system are not supported by Google, may cause hardware issues and may void warranty." Source: Image of developer mode setup process.โ†ฉ๏ธŽ

  6. Apple's broad interpretation of the exception provided in article 6(4) of the DMA allows them to require that all apps distributed on third party app stores be manually reviewed, approved, and signed by Apple. This may be challenged in the future by the European Commission.โ†ฉ๏ธŽ

  7. According to Japan Times, "[The bill] allows designated companies to reject other app stores if there are serious concerns about security and data privacy. The Japanese government will draft guidelines for app store providers to make sure security is robust and data privacy is protected." It remains to be seen how this will be implemented and if users will be provided with an option to override the platform owner's security decisions/recommendations (provided that they accept the risks).โ†ฉ๏ธŽ

  8. Expected to enter into force by the end of 2025, according to Kyodo News.โ†ฉ๏ธŽ

  9. The Open App Markets Act would obligate platforms to "install third-party apps or app stores through means other than its app store", but would not prevent platform owners from taking actions "necessary to achieve user privacy, security, or digital safety; taken to prevent spam or fraud; necessary to prevent unlawful infringement of preexisting intellectual property; or taken to prevent a violation of, or comply with, Federal or State law". If passed, it would be up to a court to interpret whether or not this mandates an option allowing users to override the platform owner's security decisions/recommendations (provided that they accept the risks).โ†ฉ๏ธŽ

  10. Under the court's ruling, Google is required to allow third party app stores into its Google Play Store for a period of 3 years. Critics have argued that the ruling is unnecessary because Android already allows the sideloading of third party app stores, and that Google should not be obligated to endorse and provide hosting for third party app stores inside of their privately-operated first party store. Proponents have argued that the process of sideloading is too complex for the average user to understand, and that Google unfairly disincentivizes third party app stores through "scare screens" presented to end users and business contracts with OEMs. Epic Games sued Apple at the same time as Google for similar reasons, but ultimately lost their case. Google intends to appeal the decision.โ†ฉ๏ธŽ

  11. According to the court-issued injunction, "Google is entitled to take reasonable measures to ensure that the platforms or stores, and the apps they offer, are safe from a computer systems and security standpoint, and do not offer illegal goods or services under federal or state law within the United States, or violate Googleโ€™s content standards. [...] If challenged, Google will bear the burden of proving that its technical and content requirements and determinations are strictly necessary and narrowly tailored." It would be up to the court's technical committee, or to the court, to interpret whether or not Google can forbid app stores providing the ability to add arbitrary sources, such as F-Droid.โ†ฉ๏ธŽ