An App Store rejection is a request to fix a specific review issue, not proof that your idea is bad. No checklist guarantees approval, but a complete, testable submission prevents avoidable delays.
Apple says 90% of submissions are reviewed in under 24 hours on average. Incomplete access, broken flows, or mismatched disclosures can turn that fast review into another submission cycle.
This guide translates the relevant App Review Guidelines into checks a non-technical builder can run before submitting.
TL;DR
- Start with 2.1. Apple says over 40% of unresolved review issues relate to app completeness.
- Confirm complete metadata, working URLs, and a live backend.
- Test on-device and provide active demo access or an approved demo mode.
- Finish every in-app purchase before submitting it for review.
- Then check originality under 4.3 and privacy under 5.1.1.
Common App Store review issues
| Guideline | Apple section | Common issue checked here |
|---|---|---|
| 2.1 | App Completeness | Incomplete build or blocked reviewer access |
| 4.3 | Spam | Duplicate, templated, or copycat submission |
| 5.1.1 | Data Collection and Storage | Privacy mismatch or missing account deletion |
| 4.2 | Minimum Functionality | Too little lasting app functionality |
| 2.3 | Accurate Metadata | Listing does not match the app |
| 3.1.1 | In-App Purchase | Wrong payment path for digital goods |
| 4.8 | Login Services | Missing equivalent third-party login option |
| 5.2 | Intellectual Property | Unlicensed brands, assets, or content |
Source: Apple App Review Guidelines, last updated June 8, 2026. This table maps issues covered in this guide; it is not a rejection-frequency ranking.
Apple describes the guidelines as a living document, so verify the current language before each submission.
1. Guideline 2.1: App Completeness
Apple says over 40% of unresolved review issues relate to Guideline 2.1. A complete submission gives the reviewer a working build, accurate review information, and access to every feature under review.
Common triggers
- The build crashes, freezes, or leaves a core control broken on a supported device.
- Required metadata is missing, or a submitted URL fails to load.
- Demo credentials expire or open an account without usable content.
- A required configuration prevents the reviewer from reaching a core feature.
- A backend service is offline during review.
- An in-app purchase is incomplete or unavailable in the submitted build.
How to fix them
- Run every core flow on a physical device for each supported OS version.
- Open every submitted URL from a logged-out browser before uploading the build.
- Create a permanent, populated demo account and place its credentials in App Review Information.
- If shared credentials are impossible, explain the restriction and request approval for a built-in demo mode.
- Keep backend services and demo data available until review is complete.
- Submit completed in-app purchases with the build and explain how to reach them.
- Add review notes for any prerequisite the reviewer cannot infer.
2. Guideline 4.3: Spam
Guideline 4.3 focuses on duplicate and low-originality submissions. In a crowded category, Apple expects a unique, high-quality experience rather than a copy or a repeated template.
Common triggers
- The app copies a popular product’s name or interface with only minor changes.
- A generic template remains visible beneath a new logo or color palette.
- Several near-identical apps are submitted under separate bundle IDs.
- A crowded-category app offers no clear experience of its own.
How to fix them
- Define one audience and one job, then make that difference visible during first use.
- Replace sample screens and stock copy with complete, app-specific functionality.
- Consolidate repeated variants into one configurable app when practical.
- Use App Review notes to explain original functionality that is not obvious at launch.
3. Guideline 5.1.1: Data Collection and Storage
Guideline 5.1.1 checks whether your data practices match what users and Apple are told. Apple also requires apps that support account creation to offer account deletion within the app.
Common triggers
- The privacy policy URL fails, or the policy is not accessible inside the app.
- App Store Connect disclosures omit data collected by the app or a third-party SDK.
- A permission appears before its feature needs it, or its usage description is vague.
- The app forces account creation when its core experience is not account-based.
- The app supports account creation but offers no in-app way to start account deletion.
How to fix them
- Inventory each data type and every SDK before completing the privacy answers.
- Make App Store Connect privacy answers match the current binary and its SDKs.
- Update the privacy policy to describe current data collection and use.
- Request each permission when its feature needs it and name the exact purpose.
- Let people use non-account features without signing in.
- Add and test an in-app deletion path for every app that supports account creation.
- Open the privacy policy on a device before submitting.
4. Guideline 4.2: Minimum Functionality
A web wrapper is not automatically rejected. Guideline 4.2 expects features, content, and UI that elevate the app beyond a repackaged website.
Common triggers:
- The primary experience closely mirrors the mobile website, with little app-specific value.
- The app is a thin brochure, link directory, or marketing shell.
- Navigation and interactions still feel designed for a browser rather than a phone.
- A token native feature is added, but it does not improve the core experience.
How to reduce the risk:
- Define the app-specific value before submission, then make it obvious in the first review session.
- Add mobile-appropriate capabilities that support the product, such as saved state, device integration, or useful offline behavior.
- Test the complete experience on a real device, because a polished website inside a shell can still feel unfinished.
- Explain less-obvious app functionality in Review Notes and give the reviewer a direct test path.
The web wrapper vs native question matters because the implementation should support the experience, not because Apple bans wrappers.
5. Guideline 2.3: Accurate Metadata
Metadata must match the current app and its core experience. Guideline 2.3.3 allows screenshot text and image overlays, but the screenshots should still show the app in use.
Common triggers:
- Screenshots show an old interface or features absent from the submitted build.
- Overlays dominate the images, leaving the actual app experience unclear.
- The description promises unfinished or unavailable functionality.
- The support URL leads to a generic homepage instead of useful support.
- The category, age rating, privacy details, or other listing fields do not match the app.
How to reduce the risk:
- Capture the current build and show representative screens from the core user journey.
- Use text and image overlays to clarify benefits, not to replace the app UI.
- Describe only functionality available in the submitted version.
- Open every listing URL and verify the category, age rating, and required disclosures before submission.
- Recheck metadata after any release that changes the interface, business model, or account flow.
6. Guideline 3.1.1: In-App Purchase
Guideline 3.1.1 generally requires in-app purchase for digital features, content, or subscriptions unlocked in the app. The permitted checkout path depends on the app type and storefront.
Common triggers:
- A digital unlock sends users to an external checkout that is not permitted for the target storefront.
- A payment button or link is used without following an applicable entitlement or storefront rule.
- Restorable purchases have no working recovery path.
- The reviewer cannot test the paywall, purchase flow, or paid experience.
- The checkout obscures the price, billing period, or renewal terms.
How to reduce the risk:
- Classify the purchase first: digital access used in the app follows different rules from physical goods or services consumed elsewhere.
- Use in-app purchase for digital unlocks unless the current rule or a listed exception permits another method.
- United States storefront apps may include buttons, external links, or other calls to action under Guideline 3.1.1(a).
- Do not copy that flow into every region. Other storefronts may require an entitlement or a different implementation.
- Use other payment methods for physical goods and services consumed outside the app.
- Test the complete purchase and recovery flow in sandbox, then give App Review a working test path.
Check the current guideline for every target storefront before shipping the payment flow. Decide where the paywall goes early, because placement and product type affect review.
7. Guideline 4.8: Login Services
Guideline 4.8 applies when an app uses a qualifying third-party or social login for the user's primary account. It requires an equivalent privacy-preserving option unless a listed exception applies.
Common triggers:
- Google, Facebook, or another qualifying service is the only primary account login.
- The alternative login collects more than the user's name and email during setup.
- The alternative does not let users keep their email private from all parties during setup.
- App interactions are collected for advertising without consent.
- Plain email sign-up is treated as automatically sufficient without checking all three privacy protections.
How to reduce the risk:
- Add Sign in with Apple or another equivalent option that satisfies every Guideline 4.8 requirement.
- Limit account setup data to the user's name and email.
- Let users keep their email address private from all parties during setup.
- Do not collect app interactions for advertising without consent.
- Check whether a listed exception fits the app before relying on it.
- Give App Review a working account or clear instructions for every login path.
8. Guideline 5.2: Intellectual Property
Guideline 5.2 focuses on protected names, brands, content, and services used without adequate rights or authorization. Treat ownership and permission as submission evidence, not a disclaimer exercise.
Common triggers:
- Third-party logos or trademarks appear in the icon, screenshots, listing, or interface without clear authorization.
- The app name or presentation implies an affiliation that has not been established.
- Content is copied, scraped, or republished without a documented basis for using it.
- A client or service app is submitted without clear evidence that the developer may represent that organization.
How to reduce the risk:
- Inventory third-party names, media, code, and content before submission, then record where each item came from.
- Use original or properly licensed assets and retain the relevant permission records.
- Confirm who should submit a client-branded app and include authorization in Review Notes when useful.
- Remove uncertain branding or content before review instead of relying on a broad ownership statement.
- Make the app's relationship to third-party services clear in its name, listing, and interface.
The pre-submission checklist
Run this against the exact build you plan to submit.
Build quality
- Test every primary flow on a real iPhone, including empty and error states.
- Confirm every interactive control works and every screen contains final content.
- Test on a weak connection and make failures recoverable.
- Keep the backend, demo data, and required services available throughout review.
Reviewer access
- Provide a working demo account with realistic data whenever sign-in is required.
- Give reviewers a stable path through two-factor authentication, such as a reusable code or bypass.
- Keep the App Review contact name, email, and phone number current.
- Use review notes to explain any setup or non-obvious feature reviewers could miss.
- State exactly where each in-app purchase or subscription appears and how to test it.
Privacy
- Inventory every third-party SDK and ensure App Store privacy answers match its data collection.
- Use permission text that explains the user-facing feature requiring access.
- Remove permissions the submitted build does not use.
- If users can create an account, confirm they can start account deletion inside the app.
Purchases
- Use Apple in-app purchase for digital content and features covered by Apple’s rules.
- Test successful and failed purchases in the submitted build.
- Reinstall the app and verify Restore Purchases returns eligible entitlements.
Metadata
- Make the name, subtitle, description, and promotional text match the current build.
- Use current screenshots that show the app in use without promising unavailable features.
- Set the category and age rating from the app’s actual content and behavior.
- Verify every listing URL loads, especially the privacy policy and support pages.
If you get rejected anyway
A rejection is a request for a specific correction or clarification, not a verdict on the whole app.
- Identify the issue. Read the cited guideline and Apple’s full message in App Store Connect before changing the build.
- Fix what is noncompliant. Make the smallest complete correction, test it on a device, update related metadata or review notes, then resubmit.
- Reply with context. If the reviewer missed a feature or access path, respond in App Store Connect with exact steps and concise evidence.
- Appeal when the app already complies. Explain why the decision is incorrect, tie your evidence to the cited guideline, and submit an appeal.
Do not repeatedly resubmit the same unresolved issue. Apple warns that repeated rejection for the same violation can lengthen review.
Where Bilt fits
Getting through review still requires product judgment. Bilt cannot decide whether your app complies or guarantee Apple approval.
Bilt helps with the repetitive technical work between your app idea and App Store submission.
- Generate native React Native output for iOS and Android.
- Preview the iOS app in a browser simulator, then scan a QR code to test on a real device.
- Use an automated workflow for builds, code signing, and submission.
- Add native purchase support and test interactive purchase flows before review.
You still need an Apple Developer account, accurate metadata, complete review notes, and a compliant product. Apple currently prices its Developer Program at $99 per year, subject to change.
Start building free. Free to start · No credit card.
Frequently Asked Questions
What is the most common App Store rejection reason?
App Completeness under Guideline 2.1 is the leading documented App Store rejection issue. Apple says more than 40% of unresolved review issues relate to crashes, placeholder content, incomplete information, or other 2.1 problems.
How long does App Store review take?
Apple says 90% of submissions are reviewed in under 24 hours on average. Complex or incomplete submissions can take longer, so avoid promising an exact public launch time.
Can I get rejected for screenshots?
Yes. Under Guideline 2.3, screenshots must accurately show the current app in use. Apple permits text and image overlays, but misleading screenshots or standalone marketing art can trigger rejection.
Do I need a demo account?
Demo access is required when features depend on an account. Provide working credentials in App Review Information, or request prior approval for a fully featured demo mode when your app qualifies.
Does my app need in-app account deletion?
Yes. Your app needs an in-app deletion path when users can create accounts. An email or support-only flow is insufficient unless an Apple-recognized exception applies, such as extra service steps for a highly regulated app.
Will a web wrapper get rejected?
A web wrapper can be rejected when it offers little beyond a repackaged website. Guideline 4.2 considers the complete experience, including native value, functionality, and whether the app feels designed for iOS.
Can I use Stripe for subscriptions in my iOS app?
Sometimes. Stripe can process payments for physical goods and real-world services.
For digital purchases, requirements depend on app type and storefront. Current US rules allow external purchase links, while other regions may require Apple In-App Purchase or specific entitlements.
Does rejection hurt my app long-term?
Rejection does not automatically create a permanent penalty. Fixing the cited issue and resubmitting is normal, but repeated unfixed violations can lengthen review and lead to closer scrutiny.
How many times can I resubmit?
Apple publishes no hard resubmission cap. Resolve every cited issue before resubmitting, because sending the same unfixed build back wastes review cycles and can delay approval.
Sources
- App Review Guidelines, updated June 8, 2026
- App Review, review timing and submission guidance
