diff --git a/server/routes/apps.js b/server/routes/apps.js
index 3166a0a..a07bb66 100644
--- a/server/routes/apps.js
+++ b/server/routes/apps.js
@@ -468,14 +468,24 @@ router.get("/:appId/builds", async (req, res) => {
 
   try {
     const fields = "fields[builds]=version,processingState,uploadedDate,iconAssetToken,minOsVersion,buildAudienceType";
+    const encryptionInclude = "include=appEncryptionDeclaration&fields[appEncryptionDeclarations]=usesNonExemptEncryption,appEncryptionDeclarationState";
     let url;
     if (versionString) {
-      url = `/v1/builds?filter[app]=${appId}&filter[preReleaseVersion.version]=${encodeURIComponent(versionString)}&${fields}&limit=25`;
+      url = `/v1/builds?filter[app]=${appId}&filter[preReleaseVersion.version]=${encodeURIComponent(versionString)}&${fields}&${encryptionInclude}&limit=25`;
     } else {
-      url = `/v1/apps/${appId}/builds?${fields}&limit=25`;
+      url = `/v1/apps/${appId}/builds?${fields}&${encryptionInclude}&limit=25`;
     }
     const data = await ascFetch(account, url);
 
+    const includedDeclarations = new Map();
+    if (data.included) {
+      for (const inc of data.included) {
+        if (inc.type === "appEncryptionDeclarations") {
+          includedDeclarations.set(inc.id, inc.attributes);
+        }
+      }
+    }
+
     const builds = data.data.map((b) => {
       const attrs = b.attributes;
       let iconUrl = null;
@@ -485,6 +495,8 @@ router.get("/:appId/builds", async (req, res) => {
           .replace("{h}", "128")
           .replace("{f}", "png");
       }
+      const declId = b.relationships?.appEncryptionDeclaration?.data?.id || null;
+      const declAttrs = declId ? includedDeclarations.get(declId) : null;
       return {
         id: b.id,
         version: attrs.version,
@@ -493,6 +505,9 @@ router.get("/:appId/builds", async (req, res) => {
         minOsVersion: attrs.minOsVersion,
         buildAudienceType: attrs.buildAudienceType,
         iconUrl,
+        encryptionDeclarationId: declId,
+        usesNonExemptEncryption: declAttrs?.usesNonExemptEncryption ?? null,
+        complianceState: declAttrs?.appEncryptionDeclarationState ?? null,
       };
     }).sort((a, b) => new Date(b.uploadedDate) - new Date(a.uploadedDate));
 
@@ -578,6 +593,94 @@ router.patch("/:appId/versions/:versionId/build", async (req, res) => {
   }
 });
 
+// ── Build Encryption Compliance ─────────────────────────────────────────────
+
+router.get("/:appId/builds/:buildId/encryptionDeclaration", async (req, res) => {
+  const { buildId } = req.params;
+  const { accountId } = req.query;
+
+  const cacheKey = `apps:build-encryption:${buildId}:${accountId || "default"}`;
+  const cached = apiCache.get(cacheKey);
+  if (cached) return res.json(cached);
+
+  const accounts = getAccounts();
+  const account = accounts.find((a) => a.id === accountId) || accounts[0];
+
+  try {
+    const data = await ascFetch(
+      account,
+      `/v1/builds/${buildId}/appEncryptionDeclaration?fields[appEncryptionDeclarations]=usesNonExemptEncryption,appEncryptionDeclarationState,containsProprietaryCryptography,containsThirdPartyCryptography,availableOnFrenchStore,codeValue,platform`
+    );
+
+    const decl = data.data
+      ? {
+          id: data.data.id,
+          ...data.data.attributes,
+        }
+      : null;
+
+    const result = { declaration: decl };
+    apiCache.set(cacheKey, result);
+    res.json(result);
+  } catch (err) {
+    console.error(`Failed to fetch encryption declaration for build ${buildId}:`, err.message);
+    res.status(502).json({ error: err.message });
+  }
+});
+
+router.patch("/:appId/builds/:buildId/encryptionDeclaration", async (req, res) => {
+  const { appId, buildId } = req.params;
+  const { accountId, usesNonExemptEncryption, containsProprietaryCryptography, containsThirdPartyCryptography } = req.body;
+
+  if (!accountId) {
+    return res.status(400).json({ error: "accountId is required" });
+  }
+
+  const accounts = getAccounts();
+  const account = accounts.find((a) => a.id === accountId);
+  if (!account) {
+    return res.status(400).json({ error: "Account not found" });
+  }
+
+  try {
+    // Fetch the existing declaration ID
+    const declData = await ascFetch(
+      account,
+      `/v1/builds/${buildId}/appEncryptionDeclaration?fields[appEncryptionDeclarations]=appEncryptionDeclarationState`
+    );
+
+    if (!declData.data) {
+      return res.status(404).json({ error: "No encryption declaration found for this build" });
+    }
+
+    const declarationId = declData.data.id;
+    const attributes = { usesNonExemptEncryption };
+    if (usesNonExemptEncryption) {
+      if (containsProprietaryCryptography !== undefined) attributes.containsProprietaryCryptography = containsProprietaryCryptography;
+      if (containsThirdPartyCryptography !== undefined) attributes.containsThirdPartyCryptography = containsThirdPartyCryptography;
+    }
+
+    await ascFetch(account, `/v1/appEncryptionDeclarations/${declarationId}`, {
+      method: "PATCH",
+      body: {
+        data: {
+          type: "appEncryptionDeclarations",
+          id: declarationId,
+          attributes,
+        },
+      },
+    });
+
+    apiCache.deleteByPrefix(`apps:build-encryption:${buildId}:`);
+    apiCache.deleteByPrefix(`apps:builds:${appId}:`);
+
+    res.json({ success: true });
+  } catch (err) {
+    console.error(`Failed to update encryption declaration for build ${buildId}:`, err.message);
+    res.status(502).json({ error: err.message });
+  }
+});
+
 // ── Version Localizations ───────────────────────────────────────────────────
 
 function normalizeVersionLocalization(item) {
diff --git a/src/api/index.js b/src/api/index.js
index 1a7d68e..01b8865 100644
--- a/src/api/index.js
+++ b/src/api/index.js
@@ -98,6 +98,30 @@ export async function attachBuild(appId, versionId, buildId, accountId) {
   return res.json();
 }
 
+// ── Build Encryption Compliance ──────────────────────────────────────────────
+
+export async function fetchBuildEncryptionDeclaration(appId, buildId, accountId) {
+  const res = await fetch(`/api/apps/${appId}/builds/${buildId}/encryptionDeclaration?accountId=${accountId}`);
+  if (!res.ok) {
+    const err = await res.json().catch(() => ({}));
+    throw new Error(err.error || `Failed to fetch encryption declaration: ${res.status}`);
+  }
+  return res.json();
+}
+
+export async function updateBuildEncryptionDeclaration(appId, buildId, data) {
+  const res = await fetch(`/api/apps/${appId}/builds/${buildId}/encryptionDeclaration`, {
+    method: "PATCH",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify(data),
+  });
+  if (!res.ok) {
+    const err = await res.json().catch(() => ({}));
+    throw new Error(err.error || `Failed to update encryption declaration: ${res.status}`);
+  }
+  return res.json();
+}
+
 // ── Version Settings (release type, phased release, rating reset) ────────────
 
 export async function updateVersionRelease(appId, versionId, { accountId, releaseType, earliestReleaseDate, resetRatingSummary }) {
diff --git a/src/components/BuildComplianceModal.jsx b/src/components/BuildComplianceModal.jsx
new file mode 100644
index 0000000..4aa818f
--- /dev/null
+++ b/src/components/BuildComplianceModal.jsx
@@ -0,0 +1,260 @@
+import { useState, useEffect } from "react";
+import { fetchBuildEncryptionDeclaration, updateBuildEncryptionDeclaration } from "../api/index.js";
+
+const ALGORITHM_OPTIONS = [
+  {
+    id: "proprietary",
+    label: "Encryption algorithms that are proprietary or not accepted as standard by international standard bodies (IEEE, IETF, ITU, etc.)",
+    proprietary: true,
+    thirdParty: false,
+  },
+  {
+    id: "standard",
+    label: "Standard encryption algorithms instead of, or in addition to, using or accessing the encryption within Apple's operating system",
+    proprietary: false,
+    thirdParty: true,
+  },
+  {
+    id: "both",
+    label: "Both algorithms mentioned above",
+    proprietary: true,
+    thirdParty: true,
+  },
+  {
+    id: "none",
+    label: "None of the algorithms mentioned above",
+    proprietary: false,
+    thirdParty: false,
+  },
+];
+
+export default function BuildComplianceModal({ build, appId, accountId, onClose, onSuccess, isMobile }) {
+  const [loading, setLoading] = useState(true);
+  const [saving, setSaving] = useState(false);
+  const [error, setError] = useState(null);
+  const [declaration, setDeclaration] = useState(null);
+
+  // Step 1: encryption yes/no, Step 2: algorithm type
+  const [step, setStep] = useState(1);
+  const [usesEncryption, setUsesEncryption] = useState(null);
+  const [selectedAlgorithm, setSelectedAlgorithm] = useState(null);
+
+  useEffect(() => {
+    let cancelled = false;
+    async function load() {
+      try {
+        const result = await fetchBuildEncryptionDeclaration(appId, build.id, accountId);
+        if (cancelled) return;
+        setDeclaration(result.declaration);
+      } catch (err) {
+        if (cancelled) return;
+        setError(err.message);
+      } finally {
+        if (!cancelled) setLoading(false);
+      }
+    }
+    load();
+    return () => { cancelled = true; };
+  }, [appId, build.id, accountId]);
+
+  async function handleSave() {
+    setSaving(true);
+    setError(null);
+    try {
+      const data = { accountId, usesNonExemptEncryption: usesEncryption };
+      if (usesEncryption && selectedAlgorithm) {
+        const algo = ALGORITHM_OPTIONS.find((a) => a.id === selectedAlgorithm);
+        data.containsProprietaryCryptography = algo.proprietary;
+        data.containsThirdPartyCryptography = algo.thirdParty;
+      }
+      await updateBuildEncryptionDeclaration(appId, build.id, data);
+      onSuccess();
+    } catch (err) {
+      setError(err.message);
+    } finally {
+      setSaving(false);
+    }
+  }
+
+  function handleNoEncryption() {
+    setUsesEncryption(false);
+    setStep("saving");
+    // Save immediately
+    setSaving(true);
+    setError(null);
+    updateBuildEncryptionDeclaration(appId, build.id, {
+      accountId,
+      usesNonExemptEncryption: false,
+    })
+      .then(() => onSuccess())
+      .catch((err) => {
+        setError(err.message);
+        setSaving(false);
+        setStep(1);
+      });
+  }
+
+  function handleYesEncryption() {
+    setUsesEncryption(true);
+    setStep(2);
+  }
+
+  return (
+    <div
+      onClick={onClose}
+      className={`fixed inset-0 bg-black/40 backdrop-blur-[8px] flex justify-center z-[100] ${isMobile ? "items-end" : "items-center"}`}
+    >
+      <div
+        onClick={(e) => e.stopPropagation()}
+        style={{ animation: "asc-fadein 0.3s ease" }}
+        className={`bg-dark-card border border-dark-border-light w-full overflow-y-auto shadow-[0_32px_64px_rgba(0,0,0,0.15)] ${
+          isMobile
+            ? "rounded-t-2xl max-w-full max-h-[90vh]"
+            : "rounded-2xl max-w-[520px] max-h-[85vh]"
+        }`}
+      >
+        {/* Header */}
+        <div className="px-6 py-4 border-b border-dark-border flex items-center justify-between sticky top-0 bg-dark-card z-[1]">
+          <span className="text-[15px] font-bold text-dark-text">Export Compliance</span>
+          <button
+            onClick={onClose}
+            disabled={saving}
+            className="w-7 h-7 rounded-full bg-dark-surface flex items-center justify-center cursor-pointer border-none hover:bg-dark-hover transition-colors disabled:opacity-50"
+          >
+            <svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="#86868b" strokeWidth="2.5" strokeLinecap="round" strokeLinejoin="round">
+              <line x1="18" y1="6" x2="6" y2="18" />
+              <line x1="6" y1="6" x2="18" y2="18" />
+            </svg>
+          </button>
+        </div>
+
+        {/* Content */}
+        <div className={isMobile ? "px-4 py-4" : "px-6 py-5"}>
+          {loading ? (
+            <div className="text-center py-8 text-dark-dim">
+              <div className="text-lg inline-block" style={{ animation: "asc-spin 1s linear infinite" }}>{"\u21bb"}</div>
+              <div className="text-xs font-semibold mt-1">Loading compliance info...</div>
+            </div>
+          ) : error && step !== 2 ? (
+            <div className="text-center py-6">
+              <div className="text-xs text-danger font-semibold mb-1">Error</div>
+              <div className="text-[11px] text-dark-dim">{error}</div>
+            </div>
+          ) : step === 1 ? (
+            <>
+              {/* Build info */}
+              <div className="mb-5">
+                <div className="text-[11px] text-dark-dim font-semibold uppercase tracking-wider mb-1">Build {build.version}</div>
+                {declaration?.appEncryptionDeclarationState && (
+                  <div className="flex items-center gap-1.5 mt-1">
+                    <span className="w-1.5 h-1.5 rounded-full bg-[#ff9500]" />
+                    <span className="text-[11px] text-[#ff9500] font-medium">
+                      {declaration.appEncryptionDeclarationState === "MISSING" ? "Missing Compliance" : declaration.appEncryptionDeclarationState}
+                    </span>
+                  </div>
+                )}
+              </div>
+
+              <div className="text-[13px] text-dark-text font-semibold mb-3">
+                Does your app use non-exempt encryption?
+              </div>
+
+              <div className="space-y-2">
+                <button
+                  onClick={handleNoEncryption}
+                  disabled={saving}
+                  className="w-full text-left rounded-[10px] px-4 py-3 bg-dark-surface border border-dark-border hover:border-dark-border-light transition-colors cursor-pointer disabled:opacity-50 disabled:cursor-not-allowed"
+                >
+                  <div className="text-[13px] font-semibold text-dark-text">No</div>
+                  <div className="text-[11px] text-dark-dim mt-0.5">
+                    This app does not use encryption, or only uses exempt encryption (HTTPS, TLS, etc.)
+                  </div>
+                </button>
+
+                <button
+                  onClick={handleYesEncryption}
+                  disabled={saving}
+                  className="w-full text-left rounded-[10px] px-4 py-3 bg-dark-surface border border-dark-border hover:border-dark-border-light transition-colors cursor-pointer disabled:opacity-50 disabled:cursor-not-allowed"
+                >
+                  <div className="text-[13px] font-semibold text-dark-text">Yes</div>
+                  <div className="text-[11px] text-dark-dim mt-0.5">
+                    This app uses non-exempt encryption
+                  </div>
+                </button>
+              </div>
+
+              {/* Info box */}
+              <div className="mt-4 rounded-lg bg-[#ff9500]/8 border border-[#ff9500]/15 px-4 py-3">
+                <div className="text-[11px] text-dark-dim leading-relaxed">
+                  You can bypass this by adding <span className="font-mono text-dark-ghost">ITSAppUsesNonExemptEncryption</span> to your app's Info.plist.
+                </div>
+              </div>
+            </>
+          ) : step === 2 ? (
+            <>
+              <div className="text-[13px] text-dark-text font-semibold mb-1">
+                App Encryption Documentation
+              </div>
+              <div className="text-[12px] text-dark-dim mb-4">
+                What type of encryption algorithms does your app implement?
+              </div>
+
+              <div className="space-y-1.5">
+                {ALGORITHM_OPTIONS.map((opt) => (
+                  <button
+                    key={opt.id}
+                    onClick={() => setSelectedAlgorithm(opt.id)}
+                    className={`w-full text-left rounded-[10px] px-4 py-3 border transition-colors cursor-pointer ${
+                      selectedAlgorithm === opt.id
+                        ? "bg-accent/8 border-accent/30"
+                        : "bg-dark-surface border-dark-border hover:border-dark-border-light"
+                    }`}
+                  >
+                    <div className="flex items-start gap-3">
+                      <div className={`w-4 h-4 rounded-full border-2 mt-0.5 shrink-0 flex items-center justify-center ${
+                        selectedAlgorithm === opt.id ? "border-accent" : "border-dark-ghost"
+                      }`}>
+                        {selectedAlgorithm === opt.id && (
+                          <div className="w-2 h-2 rounded-full bg-accent" />
+                        )}
+                      </div>
+                      <div className="text-[12px] text-dark-text leading-relaxed">{opt.label}</div>
+                    </div>
+                  </button>
+                ))}
+              </div>
+
+              {error && (
+                <div className="mt-3 text-[11px] text-danger font-medium">{error}</div>
+              )}
+
+              {/* Footer buttons */}
+              <div className="flex justify-end gap-2 mt-5">
+                <button
+                  onClick={() => { setStep(1); setSelectedAlgorithm(null); setError(null); }}
+                  className="px-4 py-2 rounded-lg text-[12px] font-semibold text-dark-dim bg-dark-surface border border-dark-border cursor-pointer hover:bg-dark-hover transition-colors"
+                >
+                  Back
+                </button>
+                <button
+                  onClick={handleSave}
+                  disabled={!selectedAlgorithm || saving}
+                  className="px-4 py-2 rounded-lg text-[12px] font-semibold bg-accent text-white border-none cursor-pointer hover:brightness-110 transition-all disabled:opacity-40 disabled:cursor-not-allowed"
+                >
+                  {saving ? (
+                    <span className="inline-block" style={{ animation: "asc-spin 1s linear infinite" }}>{"\u21bb"}</span>
+                  ) : "Save"}
+                </button>
+              </div>
+            </>
+          ) : step === "saving" ? (
+            <div className="text-center py-8 text-dark-dim">
+              <div className="text-lg inline-block" style={{ animation: "asc-spin 1s linear infinite" }}>{"\u21bb"}</div>
+              <div className="text-xs font-semibold mt-1">Saving compliance declaration...</div>
+            </div>
+          ) : null}
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/src/components/BuildSelector.jsx b/src/components/BuildSelector.jsx
index d38b7d3..70afd94 100644
--- a/src/components/BuildSelector.jsx
+++ b/src/components/BuildSelector.jsx
@@ -1,7 +1,13 @@
 import { useState } from "react";
 import BuildSelectorModal from "./BuildSelectorModal.jsx";
 
-export default function BuildSelector({ builds, attachedBuild, loading, attaching, attachingBuildId, error, onAttach, isMobile }) {
+function isMissingCompliance(build) {
+  if (!build) return false;
+  const state = build.complianceState;
+  return state === "MISSING" || state === "INVALID" || (state && state.startsWith("MISSING"));
+}
+
+export default function BuildSelector({ builds, attachedBuild, loading, attaching, attachingBuildId, error, onAttach, onManageCompliance, isMobile }) {
   const [showModal, setShowModal] = useState(false);
 
   function formatDate(dateString) {
@@ -72,6 +78,20 @@ export default function BuildSelector({ builds, attachedBuild, loading, attachin
                   <span className="text-[11px] text-dark-dim">Min OS {attachedBuild.minOsVersion}</span>
                 )}
               </div>
+              {isMissingCompliance(attachedBuild) && (
+                <div className="flex items-center gap-1.5 mt-1">
+                  <svg width="12" height="12" viewBox="0 0 20 20" fill="#ff9500">
+                    <path d="M10 2L1 18h18L10 2zm0 3.5l6.5 11.5h-13L10 5.5zM9 9v4h2V9H9zm0 5v2h2v-2H9z" />
+                  </svg>
+                  <span className="text-[11px] text-[#ff9500] font-medium">Missing Compliance</span>
+                  <button
+                    onClick={(e) => { e.stopPropagation(); onManageCompliance?.(attachedBuild); }}
+                    className="text-[11px] font-semibold text-accent cursor-pointer bg-transparent border-none font-sans hover:underline ml-1"
+                  >
+                    Manage
+                  </button>
+                </div>
+              )}
             </div>
             <button
               onClick={() => setShowModal(true)}
diff --git a/src/components/BuildSelectorModal.jsx b/src/components/BuildSelectorModal.jsx
index c8ab0bf..95b5a17 100644
--- a/src/components/BuildSelectorModal.jsx
+++ b/src/components/BuildSelectorModal.jsx
@@ -1,3 +1,9 @@
+function isMissingCompliance(build) {
+  if (!build) return false;
+  const state = build.complianceState;
+  return state === "MISSING" || state === "INVALID" || (state && state.startsWith("MISSING"));
+}
+
 export default function BuildSelectorModal({ builds, attachedBuild, attaching, attachingBuildId, onAttach, onClose, isMobile }) {
   function formatDate(dateString) {
     if (!dateString) return "\u2014";
@@ -83,6 +89,11 @@ export default function BuildSelectorModal({ builds, attachedBuild, attaching, a
                           {b.minOsVersion && (
                             <span className="text-[11px] text-dark-dim">Min OS {b.minOsVersion}</span>
                           )}
+                          {isMissingCompliance(b) && (
+                            <span className="px-1.5 py-0.5 rounded-full text-[10px] font-semibold text-[#ff9500] bg-[#ff9500]/10 border border-[#ff9500]/20">
+                              Missing Compliance
+                            </span>
+                          )}
                         </div>
                       </div>
                       <div className="shrink-0">
diff --git a/src/components/VersionDetailPage.jsx b/src/components/VersionDetailPage.jsx
index 0f3c586..4077807 100644
--- a/src/components/VersionDetailPage.jsx
+++ b/src/components/VersionDetailPage.jsx
@@ -3,6 +3,7 @@ import { fetchVersionDetail, fetchVersionBuilds, fetchAttachedBuild, attachBuild
 import { TERMINAL_STATES } from "../constants/index.js";
 import Badge from "./Badge.jsx";
 import BuildSelector from "./BuildSelector.jsx";
+import BuildComplianceModal from "./BuildComplianceModal.jsx";
 import VersionReleaseSection from "./VersionReleaseSection.jsx";
 import PhasedReleaseSection from "./PhasedReleaseSection.jsx";
 import RatingResetSection from "./RatingResetSection.jsx";
@@ -26,6 +27,7 @@ export default function VersionDetailPage({ app, version, accounts, isMobile })
   const [submitting, setSubmitting] = useState(false);
   const [submitError, setSubmitError] = useState(null);
   const [showSubmitConfirm, setShowSubmitConfirm] = useState(false);
+  const [complianceBuild, setComplianceBuild] = useState(null);
 
   const refreshDetail = useCallback(async () => {
     try {
@@ -97,6 +99,21 @@ export default function VersionDetailPage({ app, version, accounts, isMobile })
     }
   }
 
+  async function refreshBuilds() {
+    try {
+      const data = await fetchVersionBuilds(app.id, app.accountId, version.versionString);
+      setBuilds(data);
+      // Also refresh attached build to get updated compliance state
+      const attached = await fetchAttachedBuild(app.id, version.id, app.accountId);
+      setAttachedBuild(attached.build);
+    } catch { /* ignore */ }
+  }
+
+  function handleComplianceSuccess() {
+    setComplianceBuild(null);
+    refreshBuilds();
+  }
+
   async function handleSubmitForReview() {
     setSubmitting(true);
     setSubmitError(null);
@@ -200,6 +217,7 @@ export default function VersionDetailPage({ app, version, accounts, isMobile })
             attachingBuildId={attachingBuildId}
             error={buildsError}
             onAttach={handleAttachBuild}
+            onManageCompliance={setComplianceBuild}
             isMobile={isMobile}
           />
         </div>
@@ -288,6 +306,17 @@ export default function VersionDetailPage({ app, version, accounts, isMobile })
           </div>
         )}
       </div>
+
+      {complianceBuild && (
+        <BuildComplianceModal
+          build={complianceBuild}
+          appId={app.id}
+          accountId={app.accountId}
+          onClose={() => setComplianceBuild(null)}
+          onSuccess={handleComplianceSuccess}
+          isMobile={isMobile}
+        />
+      )}
     </div>
   );
 }