Posted by Sheenam Mittal, Product Supervisor, Google Play
Google Play Commerce allows you to monetize your apps and video games at scale in over 170 markets, with out the complexities and time consumption required to run your personal international commerce platform. It allows you to simply transact with tens of millions of customers world wide and provides customers trusted and protected methods to pay in your digital merchandise and content material. Guaranteeing builders and customers have a safe buy expertise has been a key pillar of Play Commerce, and we obtain this by constantly stopping and monitoring for dangerous actors seeking to defraud and abuse your apps.
Stopping fraud and securing purchases
In 2022, we prevented over $2 billion in fraudulent and abusive transactions. Unhealthy actors seeking to perform abuse on apps implement an array of methods throughout each one–time purchases in addition to auto-renewing funds. For instance, they could try and buy an merchandise in your app with a compromised type of cost, or request a refund for an in-app buy that’s been already consumed or bought, or use scammed reward playing cards for purchases. When a mixed or coordinated try is carried out by dangerous actors, it may end up in large-scale abuse in your app. Stopping such fraud and abuse requires a complete strategy, consisting of automated options and an array of inside monitoring instruments mixed with human experience.
Empower builders with instruments to mitigate app abuse
Info asymmetry between Google Play and builders is often exploited by dangerous actors. Two of the best options which you could implement to assist deal with this are Voided Purchases API and Obfuscated Account ID. Over 70% of our high 200 monetizing builders have built-in these options to cut back fraud and abuse on their apps.
- Voided Purchases API gives you with an inventory of in-app and subscription orders for every person which were voided. You possibly can implement revocation that forestalls the person from accessing merchandise from these orders.
Advantages of Voided Purchases API |
- Obfuscated Account ID helps Play detect fraudulent transactions, reminiscent of many gadgets making purchases on the identical account in a brief time period.
You can too use Play Integrity API to guard your apps and video games from probably dangerous and fraudulent interactions, reminiscent of dishonest and unauthorized entry. You name the Play Integrity API at essential moments to test that person actions or server requests are coming out of your unmodified app, put in by Google Play, operating on a real Android gadget. If one thing is incorrect, your app’s backend server can reply with applicable actions to stop assaults and scale back abuse. Builders utilizing the API have seen a median of over 50% discount in unauthorized entry of their apps and video games. Keep tuned for brand spanking new highly-requested characteristic updates.
Flowchart of how Play Integrity API works |
Wanting ahead
This month, we launched Purchases.product.devour, which lets you devour in-app objects utilizing the Play Developer API, decreasing the chance of client-side abuse by shifting extra enterprise logic to your safe backends. For instance, if a foul actor purchases an merchandise out of your app however tampers with the shopper facet, the acquisition can be mechanically refunded attributable to lack of acknowledgement after 3 days of buy. Utilizing server facet consumption will forestall one of these app abuse.
Google Play Commerce is dedicated to offering builders and customers a safe buy expertise. Study extra about how you can forestall dangerous actors from harming customers and abusing your app by visiting this information, in addition to different 2023 initiatives serving to maintain Android and Google Play protected.