Starting in the first week of July, apps that meet the following criteria are required to comply with French Encryption Laws/Regulations if you intend to distribute your app in France.
This requirement applies to apps that use, access, implement, or incorporate:
- Any encryption algorithm that is yet to be standardized by international standard bodies such as IEEE, IETF, ISO, ITU, ETSI, 3GPP, TIA, etc. or not otherwise published; or
- Standard (e.g., AES, DES, 3DES, RSA) encryption algorithm(s) instead of or in addition to accessing or using the encryption in iOS and/or Mac OS X
Apple will require you to upload a copy of your approved French declaration when you submit your app to the App Store. Relevant French encryption regulations can be found at:
- http://www.legifrance.gouv.fr/affichTexte.do?cidTexte=LEGITEXT000005789847&dateTexte=#LEGIARTI000006421577
- http://www.ssi.gouv.fr/archive/fr/reglementation/regl_crypto.html
- http://www.ssi.gouv.fr/site_article195.html
- http://www.ssi.gouv.fr/site_article197.html
Regards, Apple Export Compliance
Hi everyone.
I've found the form on https://cyber.gouv.fr/sites/default/files/2022-09/crypto_form_fourniture_prestation_annexe2%5B1%5D.pdf.
From my understanding, submitting the form to the French Government is possible via the following mail:
controle@ssi.gouv.fr, although sending via post is recommended (see https://cyber.gouv.fr/controle-reglementaire-sur-la-cryptographie-les-formulaires).Finally, Apple only requires the completed form, not the acknowledgement.
Edit: this is how debian.org completed their French encryption declaration: https://www.debian.org/legal/debian-lenny-crypto-declaration.pdf.