NowSecure Launches First Comprehensive Mobile App Privacy Solution
Posted on
Mobile applications have long been recognized as one of the most persistent weak points in enterprise privacy and security. Despite years of investment in mobile app security testing, the reality is that security alone cannot address systemic privacy blind spots—those hidden flows of sensitive data between apps, SDKs, ad networks, and analytics platforms that put both users and organizations at risk. NowSecure, a leader in Mobile Application Risk Management (MARM), has stepped directly into this gap with the launch of NowSecure Privacy, the industry’s first automated, continuous, and comprehensive privacy risk management solution designed specifically for mobile apps.
The solution addresses one of the most damaging mismatches in the mobile ecosystem: the gap between what developers say their apps collect and what the apps actually do. In public app stores, developers are required to disclose data usage in privacy manifests and safety sections. But NowSecure’s newly released research paints a stark picture: over 77% of 50,000 tested apps contained common forms of personally identifiable information; 98% of iOS apps had incomplete manifests due to third-party SDK omissions; and a striking 35% of iOS apps failed to declare data NowSecure observed being collected in live tests. On Android, the problem is equally serious, with 10% of apps omitting a required data safety section entirely. Even more concerning, 75% of iOS and 70% of Android apps tested since August 2025 collected or shared sensitive data with tracking domains—an issue compounded by the increasing integration of artificial intelligence. Of 183,000 apps scanned this year, more than 18% used AI, and thousands transmitted data to AI endpoints, opening doors to new forms of data leakage and intellectual property loss.
NowSecure Privacy sets out to close these gaps through automated privacy testing at scale, combining static, dynamic, and human-augmented analysis to surface hidden data leaks, unsafe SDKs, excessive permissions, improper AI integrations, and unauthorized data sharing. Its reporting provides detailed clarity on what data is exposed, where it comes from—first-party code, SDKs, or APIs—and where it ends up, whether ad networks, analytics firms, or data brokers. Crucially, the platform aligns findings with OWASP MASVS Privacy standards and global regulations such as GDPR, CCPA, COPPA, and HIPAA. This allows enterprises not only to prioritize remediation but also to streamline compliance workflows, governance reporting, and executive attestations. With integrated workflow automation, NowSecure Privacy empowers developers, AppSec teams, and privacy officers to detect and fix violations before they become breaches or regulatory fines.
Industry leaders are calling this a breakthrough. Ed Amoroso, CEO of Tag Cyber, described mobile apps as “some of the worst offenders” when it comes to enterprise privacy risk, praising NowSecure Privacy for delivering both visibility and control. Alan Snyder, CEO of NowSecure, underscored the stakes: “Strong mobile security requires equally strong privacy controls. Our solution gives enterprises full visibility into what data their apps collect, share, and transmit—allowing them to prevent violations before they become a reputation or regulatory incident.”
With mobile usage at the core of modern digital business, the timing of this release could not be more critical. Privacy failures are no longer just compliance risks—they are business risks, threatening customer trust, brand value, and app store availability. By marrying automated scale with deep privacy intelligence, NowSecure Privacy positions itself as an indispensable tool for organizations that take both mobile innovation and customer trust seriously. The platform is available immediately as part of NowSecure’s MARM suite, and it stands as the first truly comprehensive attempt to bring privacy management up to the same level of maturity as mobile app security.