1## 9.16\. Application Data Migration 2 3If device implementations include a capability to migrate data from a device to 4another device and do not limit the application data it copies to what is 5configured by the application developer in the manifest via 6[android:fullBackupContent](https://developer.android.com/guide/topics/data/autobackup#IncludingFiles) 7attribute, they: 8 9* [C-1-1] MUST NOT initiate transfers of application data from 10 devices on which the user has not set a primary authentication as 11 described in [9.11.1 Secure Lock Screen and Authentication]( 12 #9_11_1_secure_lock_screen_and_authentication). 13* [C-1-2] MUST securely confirm the primary authentication on the source 14 device and confirm with the user intent to copy the data on the source 15 device before any data is transferred. 16* [C-1-3] MUST use security key attestation to ensure that both the source 17 device and the target device in the device-to-device migration are 18 legitimate Android devices and have a locked bootloader. 19* [C-1-4] MUST only migrate application data to the same application on the 20 target device, with the same package name AND signing certificate. 21* [C-1-5] MUST show an indication that the source device has had data 22 migrated by a device-to-device data migration in the settings menu. A user 23 SHOULD NOT be able to remove this indication.