This document outlines privacy and security issues that mobile app developers have overlooked. It notes that 90% of banking apps are exposed to traffic interception, 50% are vulnerable to injections, and 40% do not validate SSL certificates. It discusses how users are often unaware of the extensive permissions granted to apps to access location, contacts, photos and other data. The document calls for privacy impact assessments and standards to define secure development, app store security practices, and responses to security breaches, including cloud-based device management. It aims to provide guidance to protect consumer privacy and business interests.