Received this question by email:
Hi there,
I have been looking into different secure scuttlebutt apps and have been
comparing them for my own, family, and friend's, needs.
I have just been comparing Manyverse with Planetary.
The Planetary developers explain that in order for their app to be
allowed in the Google and Apple stores, they must provide some method of
moderation to meet guidelines:
https://developer.apple.com/app-store/review/guidelines/#user-generated-content
Therefore, planetary "must run a centralized kill list for content".
"In order to be in the apple appstore you've got to provide a customer
support team for reporting abusive, harassing, or illegal content. We
do that by having the app dial back to a server we run and it gets a
bloomfilter of content, messages, or feeds we block. We want to be in
the appstore and apple does not provide any way around this."
So, my question is, since Manyverse is both in the google and apple
stores, does Manyverse also have the same implementation of having the
app 'dial back to a server' to have a filter of content run where
certain content, messages, or feeds are blocked?
If so, is your F-Droid, Dat Installer different, i.e. no filter
implementation?
One more question, which you may not have the answer to, but if
Manyverse does not run a filter as Planetary does, what's the difference
between Manyverse and Planetary which allows Manyverse to qualify for
the app stores without one, but Planetary is required to have one to be
in the app stores?
Regards,
These questions are primarily for Apple to answer, because they have the final say on what gets approved and what gets rejected. In my experience, there are many Apple employees working on reviewing the apps, and they may apply the rules differently. For instance, even for different versions of the same app, you might get a rejection suddenly for some feature that was there since always, because the reviewer at that time decided to apply rules more strictly than previous reviewers.
The App Store guidelines in my perspective are written assuming that apps follow a pattern: are services provided by startups who manage servers and host user content. This catches a wide variety of apps out there, but it poorly describes what an SSB app is: it's not a service provided by a startup, the developers do not manage servers nor host user content. So it doesn't easily fit the narrative implicit in the App Store guidelines. Manyverse is such case: the developers of the app are not providing a service, are not managing servers, and are not hosting user content. This is made clear on our privacy policy, which is another artifact that Apple requires when you submit an app.
On the other hand, Planetary is a startup that provides a service through servers that they manage (more than 5 servers, as far as I've seen) and host content. Thus, they probably fit into the traditional App Store guidelines, and reviewers may treat that app consistently as they do with other startups that host user content as a service.
The Apple App Store guidelines would direly need a reform, in my opinion, because they make such strong assumptions about companies providing services through the apps, and make it complicated for new decentralized protocols to flourish and help reform the internet at large. The Web is such a decentralized protocol and it has a somewhat special treatment in Apple's and Google's policies: if you make a browser app, as a developer you will not be held accountable for content browsable on fringe websites. If you make a generic email app, as a developer you will not be held accountable for illegal emails. The same should be true for other protocols that are in spirit similar to the WWW, and there are many nowadays: IPFS, Hyper, SSB, Gun, Matrix, ActivityPub. I think we need Apple and Google to acknowledge these protocols and give them equal status as the WWW protocol has.