← Back to Blog

How to Create a Privacy Policy for Your Meta Developer Account

May 28, 2026 5 min read

If you're building an app that integrates with Meta (Facebook or Instagram), you'll need a privacy policy URL before you can submit your app for review. Meta requires this for all apps that access user data — even basic permissions like email or public profile.

Why Does Meta Require a Privacy Policy?

Meta's Platform Terms require all developers to provide a publicly accessible privacy policy that explains what data you collect, how you use it, and how users can request deletion. Without one, your app will be rejected during review.

What Must Your Privacy Policy Include?

Meta's requirements specify your policy must cover:

  • What data you collect — email, name, profile info, usage data, etc.
  • How you use the data — authentication, personalization, analytics
  • Third-party sharing — if you share data with any external services
  • Data retention — how long you keep user data
  • User rights — how users can access, correct, or delete their data
  • Data deletion process — Meta specifically requires a deletion mechanism
  • Contact information — how users reach you about privacy concerns

The Problem: You Need a Live URL

Meta doesn't accept uploaded documents or PDFs — your privacy policy must be hosted at a publicly accessible URL. Many developers get stuck here because they don't want to set up a website just for a privacy policy page.

The Solution: PolicyHosting

With PolicyHosting, you can generate a professional, Meta-compliant privacy policy and host it at a permanent URL — all in under 5 minutes. Here's how:

  1. Sign up at policyhosting.com
  2. Fill out the form — answer questions about your app, what data you collect, and how you use it
  3. Preview your policy — review the generated 13-section privacy statement
  4. Publish — get a permanent hosted URL like policyhosting.com/p/your-app-name/
  5. Submit to Meta — paste the URL into your Meta app settings

Tips for Passing Meta App Review

  • Make sure your policy is publicly accessible (no login required to view)
  • Include a data deletion section — Meta checks for this specifically
  • List all data types your app accesses, even if just "email"
  • Your policy URL must use HTTPS (PolicyHosting handles this automatically)
  • Keep your policy up to date — if you add new data collection, update it

Ready to Get Your Privacy Policy Live?

Create your Meta-compliant privacy policy and get a hosted URL in under 5 minutes.

Get Started Free →