Bolstering America's Defenses Against Potentially Perilous Software Act or the BAD APPS Act
This bill requires the Department of Defense (DOD) to create (1) categorical definitions of foreign mobile applications of concern, and (2) a risk framework to assess certain foreign mobile applications for any potential impact on DOD personnel and operations. Generally, the framework must include mobile applications from countries that DOD determines to be engaged in consistent, unauthorized conduct that is detrimental to the national security or foreign policy of the United States.
Such framework must incorporate specified considerations, such as the manner and extent of data collection by the application.
DOD must issue guidance to all of its personnel incorporating the categories of foreign mobile applications of concern and advising how to mitigate the risks identified by the risk framework with respect to the applications. DOD must also update the categorical definitions and risk framework at least annually.