Play Store policy violations
Data safety form errors and sensitive permission misuse trigger review holds. We audit permissions against declared purpose early and prepare the data safety form before submission.
Jetpack Compose Play Console WCAG 2.2 GDPR
Kotlin Android Development Services for Modern Native Apps
Twenty-nine shipped Android apps live on Google Play for US and EU users — JoyJet's social platform with real-time encrypted messaging, xRouten's logistics driver app with live route planning, Unilab's patient portal for a 40-city diagnostic network. Jetpack Compose-fluent, Play Store submission included, accessibility and large-screen layouts by default.
We deliver Kotlin Android engineering for consumer apps, regulated enterprise clients and logistics/mobility platforms — Jetpack Compose-first for new projects, Views where legacy or SDK constraints require. Every engagement includes Play Store submission, data safety form preparation, and post-launch crash monitoring with Firebase Crashlytics or Sentry. We have shipped in the categories that require the most careful Play Policy compliance: health, finance, location and VPN.
Challenges
Industry challenges we solve
Fragment and Compose coexistence
Mixed-paradigm apps develop layout inconsistencies and lifecycle bugs. We establish clear boundaries and migrate Compose incrementally without disrupting existing flows.
Background work on battery-optimised devices
Doze mode and app standby cancel background jobs unpredictably. We use WorkManager constraints and test on real devices with battery optimisation enabled.
Room migrations at scale
Schema migrations fail silently on user devices when fallback strategies are misconfigured. We write and test every migration, use pre-populated databases for read-heavy data.
Large-screen adaptation
Phones-only layouts break on tablets and foldables — Google Play now flags apps without adaptive layouts. We implement WindowSizeClass-responsive layouts from sprint one.
GDPR and data safety transparency
EU users expect clear data handling disclosures. We map all data collection to Play's data safety categories and implement ATT-equivalent consent where required.
Solutions
Solutions we build
Consumer apps
Social, lifestyle and entertainment apps with real-time features, push, in-app purchases and Play Billing.
HealthTech apps
Patient portals, clinical workstations, Health Connect integrations and HIPAA-capable audit logging.
Logistics and mobility
Driver apps with live GPS, offline route sync, signature capture and hardware peripherals (BLE printers, scanners).
FinTech and payment apps
Biometric auth, Android Keystore key management, NFC payments and PCI DSS scope-aware card handling.
Enterprise and B2B
MDM-distributed apps, Managed Config, Work Profile support and SSO via custom tabs.
App modernisation
Java-to-Kotlin migrations, Views-to-Compose incremental rewrites and legacy SDK replacements.
Stack
Technology stack
Kotlin 2, Jetpack Compose, Coroutines, Flow, Hilt, Room, WorkManager, DataStore, Navigation, BiometricPrompt, ML Kit, Retrofit, Firebase, Sentry.
Compliance
Compliance & regulations
GDPR-aligned · HIPAA-capable · WCAG 2.2 · CCPA-acknowledged
EU
- GDPR — data safety declarations, DSR automation.
- EAA accessibility — TalkBack, Dynamic Text, contrast compliance.
- DSA — transparency and content moderation requirements.
- eIDAS — identity verification and qualified electronic signatures.
US
- HIPAA — Health Connect data handling, audit logging.
- CCPA/CPRA — consent flows, data subject rights.
- COPPA — age-gating and parental consent for apps targeting minors.
- WCAG 2.2 AA / Section 508 — accessibility for federal and commercial apps.
Shared: OWASP Mobile Top 10, Android Keystore, ProGuard/R8 obfuscation, SBOM for third-party SDKs.
Cases
Selected Kotlin Android case studies
Social Media · Consumer Tech
JoyJet
Production social platform — App Store + Google Play, live across the US and EU — with geo Radar, encrypted messaging and a virtual economy.
Logistics · Last-mile · Mobile
xRouten
Android + iOS refactor and rebuild for a German last-mile logistics operator — multi-point route planning, real-time driver tracking and in-app invoicing live in the EU.
HealthTech · Diagnostics
Unilab
Patient app for a 40-city lab network — appointment booking, digital results, 2,500+ tests, scheduling and accounting integrations.
Why YuSMP
Why Android teams choose YuSMP
29 shipped Play Store apps
From social platforms to HealthTech portals and logistics driver apps — broad Play Policy experience across health, finance, location and consumer categories.
Jetpack Compose-first team
Senior engineers who have shipped Compose in production since 1.0, know the interop gotchas with Views, and design state architectures that scale with team size.
Large-screen and foldable ready
WindowSizeClass-responsive layouts, sliding pane for foldables, and drag-and-drop for tablets — not an afterthought, designed from sprint one.
FAQ
Kotlin Android FAQ
Jetpack Compose or Views — which do you recommend?
Jetpack Compose for all new projects — declarative, less boilerplate, better state management with state hoisting, and Google's long-term investment. Views where we integrate with legacy codebases or use components Compose does not yet expose cleanly.
Do you handle Play Store submission?
Yes. We manage signing keys, Play Console setup, internal/closed/open testing tracks, production rollout and policy violation responses. Play Store submission is included in every Android engagement.
How do you handle Google Play policy compliance?
We review your app category against Play policies early in development — particularly data safety form declarations, sensitive permissions (location, contacts, SMS) and target audience. We prepare the data safety form and advise on permission minimisation.
How do you implement background work reliably?
WorkManager for guaranteed background execution — it survives process death, device restarts and Doze mode. For foreground services (location, media, health) we implement the required notifications and handle Android 14's foreground service type restrictions.
Can you integrate with hardware — BLE, NFC, IoT?
Yes. We have production BLE integrations for IoT devices, NFC for payment and identity workflows, and sensor-fusion for fitness and telematics applications. Hardware integration adds certification and device testing scope we plan explicitly.
What is your approach to Android security?
EncryptedSharedPreferences and EncryptedFile for local storage, Android Keystore for cryptographic keys, certificate pinning for API calls, and ProGuard/R8 obfuscation for production builds. We follow OWASP Mobile Top 10.
Do you support large-screen and foldable form factors?
Yes — adaptive layouts with WindowSizeClass, sliding pane layouts for foldables, and drag-and-drop for tablets. Google Play requires adaptive UI declarations for large-screen optimisation badges.
Ship a native Android app with senior Kotlin engineers
Response within 1 business day. NDA on request.