VPN app not from registered entity or misusing NEVPNManager

VPN apps must be from registered organizations with VPN capabilities, cannot sell user data, and must use NEVPNManager API.

11 cases reported · ~19 days to resolve · 67% appeal success

Apple's rejection message

Guideline 5.4 - Legal - VPN Apps: Your VPN app uses the NEVPNManager API but does not meet the requirements for VPN apps on the App Store.

How to fix this

Ensure VPN app meets all requirements

mediumWorked for 70%

Publish from an organization account (not individual). Use NEVPNManager API only. Include a clear privacy policy. Don't sell or share user data. Explain the VPN's purpose in App Review notes.

Real-world cases (11)

Reddit·Utilities·14d to resolve

Guideline 5.4 - Legal - VPN Apps. Your parental control app uses VPN profile for content filtering but is not enrolled as an organization.

Fix: Switched from VPN-based filtering to Screen Time API and DNS-based content filtering. Used NEDNSProxyProvider instead of VPN tunnel. This approach doesnt trigger the VPN guideline and works better for...

Dec 15, 2024Source

Reddit·Utilities·21d to resolve

Guideline 5.4 - Legal - VPN Apps. Your DNS-over-HTTPS app was classified as a VPN service requiring organization enrollment.

Fix: Applied for organization developer enrollment to comply with guideline 5.4. Once enrolled, resubmitted with clear documentation that the app only changes DNS settings and does not route traffic throug...

Nov 5, 2024Source

Apple Forums·Productivity·Appealed·14d to resolve

Guideline 5.4 - VPN Apps. Your app uses NEVPNManager for purposes other than providing VPN services. Using VPN profiles to filter content or block ads is not permitted.

Fix: Switched to Safari Content Blocker approach using the Content Blocker extension point instead of VPN profiles. Lost system-wide blocking but gained App Store approval.

Jul 22, 2024Source

View all 11 cases →

Command Palette

VPN app not from registered entity or misusing NEVPNManager

How to fix this

Ensure VPN app meets all requirements

Real-world cases (11)

Real-world cases (11)