Troubleshooting

App Rejected for Permissions: How to Request Only What You Need

Both Apple and Google reject apps that request permissions they do not clearly need. Asking for camera access when your app has no camera feature, requesting location when it is not essential, or failing to explain why you need a permission -- all of these trigger rejection.

Scan your app against 180+ review rules

Get a detailed compliance report in under 5 minutes. Single scan $9, Pro $29/mo.

Start Free Scan

The Permission Principle

Both platforms enforce a minimum-permissions principle: only request permissions your app actually uses, request them at the time they are needed (not all at launch), clearly explain why each permission is needed through purpose strings, and gracefully handle permission denial without breaking the app. Violating any of these triggers rejection.

Common Permission Rejection Causes

Requesting location permission without location-based features, camera or microphone access without recording or scanning features, contacts access without a clear social or sharing purpose, health data access without health-related functionality, background location without continuous location need, and push notifications requested before the user understands why. Third-party SDKs sometimes request permissions your app does not visibly use, which also triggers rejection.

Writing Effective Purpose Strings

iOS requires NSUsageDescription strings in Info.plist for each permission. These must clearly explain in user-facing language why the permission is needed. Bad: "This app needs your location." Good: "NoReject AI uses your location to show app development meetups and compliance resources near you." Google requires similar justification in your Data Safety section and manifest declarations.

180+ Apple & Google review rules

Scan results in under 5 minutes

Specific fix recommendations

Both platforms in one scan

Updated within 48hrs of guideline changes

Priority-ranked findings

Frequently Asked Questions

What if a third-party SDK requests permissions I do not use?

You are responsible for all permissions in your app, including those from SDKs. Either configure the SDK to not request unnecessary permissions, or switch to an SDK that does not require them.

When should I request permissions?

Request permissions at the moment the user needs the feature that requires it. Never request all permissions at app launch. This improves both user experience and review outcomes.

What happens if the user denies a permission?

Your app must continue to function. Features that require the denied permission can be disabled, but the app itself must not crash or become unusable.

Related Resources

App Store Rejection Reasons

Complete list of App Store and Google Play rejection reasons. Learn why apps get rejected and how to prevent each rejection type.

iOS Entitlements Rejection Fix

Fix iOS entitlements rejection from Apple. Common entitlement issues, missing capabilities, and how to properly configure your app's entitlements.

iOS App Review Guidelines Checker

Check your iOS app against Apple's App Store Review Guidelines. Automated scanning covers all 5 guideline sections with specific fix recommendations.

Stop Guessing. Start Scanning.

Join developers who pass app store review on their first try.

Start Free Scan

Single scan $9 · Pro $29/mo · Team $79/mo