Account control

Developer Account Holder transfer checklist

The Account Holder is operational infrastructure. Treat a transfer like a business continuity event.

Quick answer

Plan Account Holder transfer around authority, timing, dependent roles, finance access, signing assets, and release freezes. Apple documents transferring the Account Holder role and developer account roles. AppReviewReady interpretation: the transfer should be rehearsed and recorded before the current holder becomes unavailable.

01

Confirm authority and successor

Name the current Account Holder, successor, legal entity, business approver, finance owner, and release owner. Do not begin with a personal handoff if the organization has not agreed who should hold final account authority.

Review what the holder can affect: membership, agreements, team roles, certificates, identifiers, App Store Connect control, finance-adjacent workflows, and emergency escalation. The transfer is not only a login change.

AppReviewReady interpretation: Account Holder continuity protects revenue because a blocked holder can delay paid launches, account recovery, membership renewal, and urgent release fixes.

02

Choose a quiet transfer window

  • Avoid transfer during App Review, major launch, account transfer, or payout investigation.
  • Pause nonessential role, certificate, and agreement changes.
  • Confirm the successor can sign in with two-factor authentication.
  • Notify finance, release, and security owners before the change.
  • Keep rollback or escalation contacts available during the window.
03

Map dependent operations

List workflows that may depend on holder authority: membership renewal, Paid Applications Agreement, bank/tax review, certificates, App IDs, team invitations, app transfers, and support escalations.

If the current holder also owns CI secrets, API keys, bank records, or vendor relationships, transfer those responsibilities separately. The Apple role change does not automatically move operational knowledge.

Separate Apple process from AppReviewReady interpretation: Apple provides the role-transfer workflow; AppReviewReady recommends a continuity ledger so the business can keep shipping and collecting revenue after the change.

04

Run a post-transfer rehearsal

  1. Successor signs in and verifies trusted device access.
  2. Review team roles, app access, agreements, membership, and certificates.
  3. Confirm release owners can still submit, sign, and manage apps.
  4. Confirm finance owners can still access required business records.
  5. Record open issues and next audit date.
05

Account Holder transfer record

The record gives leadership a durable account-control trail. It also prevents future operators from guessing why authority changed during a launch period.

Review the record after leadership changes, acquisitions, or staff departures. Account control should not depend on personal memory or one founder's device.

After the transfer, schedule a permissions audit. Holder changes often expose stale users, outdated certificates, or finance access assumptions that were previously hidden.

Do not combine the holder transfer with unrelated account cleanup unless the situation demands it. First prove that the new holder can run the account; then remove stale users, rotate credentials, and change operational ownership in a controlled follow-up.

If a paid launch or B2B rollout is near, require explicit signoff from finance and release owners. The question is not only whether the transfer can happen, but whether the business can tolerate account-control churn during that window.

Copy-ready frameworkAdapt every bracketed field
Holder transfer record:
Current holder: [name]
Successor: [name]
Business approver: [team]
Transfer window: [date]
Dependencies checked: [list]
Post-transfer rehearsal: [passed/failed]
Next audit: [date]
Sources

Primary references checked for this guide

Policy statements above are grounded in the linked Apple documentation. Operational recommendations are AppReviewReady's interpretation and should be tested against your app and the current guideline text.

Put it to work

Check account-holder risk

Review holder transfer, authority, dependencies, access, and continuity evidence.

Open the tool