Store Device Information
| Plan | Platforms | MASVS |
|---|---|---|
| Enterprise | Android, iOS | Not mapped |
Overview
The Store Device Information control captures and stores comprehensive device and application metadata from protected applications. This telemetry enables security analytics, device inventory management, version tracking, and incident response capabilities.
Plan Requirement
- Plan: Enterprise only
- Platforms: iOS, Android
Fields Collected
Android
| Field | Description | Example |
|---|---|---|
manufacturer | Device manufacturer | Samsung |
model | Device model | SM-G998U |
brand | Device brand | samsung |
android_version | Android OS version | 14 |
api_level | Android API level | 34 |
build_id | Build identifier | UP1A.231005.007 |
build_type | Build type | user, userdebug |
build_tags | Build tags | release-keys |
android_id | Per-app device identifier | a1b2c3d4e5f6g7h8 |
locale | Device locale | en_US |
timezone | Device timezone | America/New_York |
cpu_abi | CPU architecture | arm64-v8a |
screen_resolution | Screen resolution | 1080x2340 |
network_country_iso | Network country code | US |
phone_type | Phone type | GSM, CDMA, None |
app_version | Application version name | 2.1.0 |
app_version_code | Application version code | 210 |
collection_timestamp | Collection time | 2026-04-22 14:30:00 |
iOS
| Field | Description | Example |
|---|---|---|
manufacturer | Device manufacturer | Apple |
model | Device model | iPhone |
brand | Device brand | Apple |
model_identifier | Hardware identifier | iPhone14,2 |
ios_version | iOS version | 17.4.1 |
vendor_id | Per-vendor device identifier | 12345678-1234-5678-1234-567812345678 |
locale | Device locale | en_US |
timezone | Device timezone | America/New_York |
cpu_abi | CPU architecture | iPhone14,2 |
screen_resolution | Screen resolution | 1170x2532 |
app_version | Application version name | 2.1.0 |
app_version_code | Application build number | 210 |
collection_timestamp | Collection time | 2026-04-22 14:30:00 |
Privacy Statement
No Personally Identifiable Information (PII) is collected:
- Android: The
android_idis a per-application identifier that resets if the app is reinstalled. It is not consistent across applications or devices and cannot be used to track users across apps. - iOS: The
vendor_id(identifierForVendor) is unique per vendor. Apps from the same vendor share this identifier, but it resets if all apps from that vendor are uninstalled. It cannot track users across different vendor applications.
Both identifiers are privacy-preserving and comply with platform privacy guidelines.
Use Cases
- Device Inventory: Track which devices and OS versions are accessing your application
- Version Management: Monitor application version distribution and plan deprecation cycles
- Security Analytics: Correlate security events with device characteristics (e.g., rooted/jailbroken devices, outdated OS versions)
- Incident Response: Investigate incidents by examining device configuration at the time of the event
- User Experience: Optimize app performance for common device configurations
- Compliance Reporting: Generate device usage reports for security audits
Data Retention
Device information is retained for approximately 60 days (2 months) using time-based partitioning. Older data is automatically purged to comply with data minimization principles.
Support Matrix
| Feature | Android | iOS |
|---|---|---|
| Hardware Information | ✓ | ✓ |
| OS Version | ✓ | ✓ |
| Application Version | ✓ | ✓ |
| Locale & Timezone | ✓ | ✓ |
| Screen Resolution | ✓ | ✓ |
| Network Information | ✓ | ✗ |
How to Enable the Control
Navigate to Device Settings from the AppTego portal, and expand the Telemetry And Analytics section. Under this section you will find the Store Device Information control. Click Enable to enable it for the next build or for it to be applied with a live push (if enabled).
API Configuration Example
{
"StoreDeviceInformation": {
"protection": true
}
}| Field | Purpose |
|---|---|
protection | Enables store device information for protected apps. |
Configuration
This control is enabled or disabled at the tenant level. When disabled:
- Device information is not collected or transmitted
- Storage and analytics features relying on device metadata are unavailable
Contact your MobileDefender administrator to enable this control.