Posted by Sheenam Mittal, Product Supervisor, Google Play
Google Play Commerce lets you monetize your apps and video games at scale in over 170 markets, with out the complexities and time consumption required to run your personal world commerce platform. It lets you simply transact with hundreds of thousands of customers around the globe and offers customers trusted and secure methods to pay to your digital merchandise and content material. Guaranteeing builders and customers have a safe buy expertise has been a key pillar of Play Commerce, and we obtain this by repeatedly stopping and monitoring for unhealthy actors seeking to defraud and abuse your apps.
Stopping fraud and securing purchases
In 2022, we prevented over $2 billion in fraudulent and abusive transactions. Dangerous actors seeking to perform abuse on apps implement an array of methods throughout each one–time purchases in addition to auto-renewing funds. For instance, they might try and buy an merchandise in your app with a compromised type of fee, or request a refund for an in-app buy that’s been already consumed or offered, or use scammed present playing cards for purchases. When a mixed or coordinated try is carried out by unhealthy actors, it may end up in large-scale abuse in your app. Stopping such fraud and abuse requires a complete strategy, consisting of automated options and an array of inner monitoring instruments mixed with human experience.
Empower builders with instruments to mitigate app abuse
Info asymmetry between Google Play and builders is usually exploited by unhealthy actors. Two of the best options you could implement to assist handle this are Voided Purchases API and Obfuscated Account ID. Over 70% of our prime 200 monetizing builders have built-in these options to scale back fraud and abuse on their apps.
- Voided Purchases API supplies you with an inventory of in-app and subscription orders for every consumer which have been voided. You may implement revocation that stops the consumer from accessing merchandise from these orders.
Advantages of Voided Purchases API |
- Obfuscated Account ID helps Play detect fraudulent transactions, comparable to many units making purchases on the identical account in a brief time period.
It’s also possible to use Play Integrity API to guard your apps and video games from doubtlessly dangerous and fraudulent interactions, comparable to dishonest and unauthorized entry. You name the Play Integrity API at necessary moments to test that consumer actions or server requests are coming out of your unmodified app, put in by Google Play, operating on a real Android gadget. If one thing is fallacious, your app’s backend server can reply with acceptable actions to forestall assaults and cut back abuse. Builders utilizing the API have seen a mean of over 50% discount in unauthorized entry of their apps and video games. Keep tuned for brand spanking new highly-requested function updates.
Flowchart of how Play Integrity API works |
Wanting ahead
This month, we launched the Purchases.product.eat, which lets you eat in-app gadgets utilizing the Play Developer API, decreasing the chance of client-side abuse by shifting extra enterprise logic to your safe backends. For instance, if a foul actor purchases an merchandise out of your app however tampers with the shopper facet, the acquisition will probably be robotically refunded resulting from lack of acknowledgement after 3 days of buy. Utilizing server facet consumption will forestall the sort of app abuse.
Google Play Commerce is dedicated to offering builders and customers a safe buy expertise. Be taught extra about find out how to forestall unhealthy actors from harming customers and abusing your app by visiting this information, in addition to different 2023 initiatives serving to hold Android and Google Play secure.