The European data protection authorities of the Article 29 Working Party have adopted an opinion addressing the key data protection risks of mobile apps. The opinion details the specific obligations of app developers and all other parties involved in the development and distribution of apps under European data protection law. Other parties include app stores, advertising providers and Operating System and device manufacturers. Special attention is paid to apps targeting children. Free and informed consent of end users is essential for compliance with European data protection law.
The full opinion including obligations and recommendations can be found here.