Designing compliance

tl;dr I overhauled Meta’s third-party developer App Review process by translating user research into a transparent interaction workflow and clear content structure. Maintained strict legal guardrails while centralizing new product terminology to reduce developer friction and system complexity.

App Review submission

Click slideshow to zoom and see screens.

The problem

Developers faced massive friction during App Review due to opaque submission tracking, a lack of final confirmation, and ambiguous legal terms, leading to erosion of developer trust, delayed revenue, and increased compliance risk for Meta.

The solution

Added progress tracking: Advocated for green checkmarks to show clear completion indicators at every step.
Clarified the final step: Designed a comprehensive confirmation modal summarizing all key information before submission.
Prevented submission errors: Locked forms post-submission to prevent edits, and embedded direct links to legal terms and conditions.
Improved notification loop: Created automated email and push notifications to immediately confirm successful delivery.
Gathered user feedback: Introduced an optional post-submission survey to continuously track and improve the developer experience.

The impact

Reduced average time-to-submission by 90% - 36 days to 4 days.
Reduced Meta's compliance resource requirements.

Submission 1

submission 2

Screenshot 2026-05-28 at 8.19.09 pm

Submission 1

1/6

Data access request forms

Click slideshow to zoom and see screens.

The problem

The App Review allowed usage step was filled with jargon, inconsistent terms and hidden requirements. Upload tools were bunched at the bottom of a long form, which overwhelmed developers.

The solution

Standardized requirements: Analyzed over 100 permissions to find shared patterns. Wrote reusable text strings to ensure clear and consistent guidance.
Balanced the tone: Shifted to a conversational yet serious tone to make the stressful process feel more manageable.
Improved the flow: Moved the upload tool closer to the relevant sections. Designed a modal so developers can complete requirements without leaving the page.

The impact

Smoother experience for developers; easier to track submission components.
Less back-and-forth between human reviewers and developers because requirements were met on first submission.

allowed usage 1

allowed usge 4

allowed usage 3

allowed usage 1

1/4

App violations in App Review

Click slideshow to zoom and see screens.

The problem

Our old compliance experience confused developers whose apps broke rules. It lacked context and used inconsistent terms. It also failed to give clear steps to fix issues. This cut off data access and hurt partner revenue.

The solution

Clear status tracking: Showed the exact status of submissions at both the app and permission levels.
Empathetic framing: Replaced the harsh word "Rejected" with the more neutral "Not approved."
Transparent timelines: Explained the exact reason for the violation, the policy broken, and the cutoff date.
Direct deep-linking: Linked directly to the pre-filled part of the submission that caused the issue.
Actionable guidance: Provided recommended changes to help developers pass the next review.
Instant confirmation: Sent a clear receipt notice as soon as developers submitted changes.

The impact

Clearer developer expectations for data access request rejections.
Decreased # of communications required for appeal resolution. Metrics were signaling a downward trend in Need More Information (NMI) requests.

App Review rejection messaging as seen on a rejected App Review submission

Required actions inbox

Violation email, following style guide requirements.

App Review rejection messaging as seen on a rejected App Review submission

1/6