Unity IAP and GDPR

At what point does an app that has no ads but uses Unity IAP have to present the user with the Data Privacy Button? When the app starts? Before the first purchase is made? Or is it enough to have the button in a menu somewhere?


So to the best of my knowledge this usage of Unity analytics falls under the same umbrella as ads which are detailed here: Privacy Policy under “Information for Developers, Publishers and Other Partners”. Meaning “uses of data that are strictly necessary for our business purposes” and therefore only requires the ability to opt-out. So just sticking the Data Privacy Button from the Unity Data Privacy Plug-In (Unity Data Privacy Plug-in | Services | Unity Asset Store) in a menu somewhere should be sufficient for compliance.