This article provides a quick overview and review of the recent major updates to Google Play’s developer policy, as well as an in-depth look at the family policy to help developers build family-friendly apps for kids. You can also review it through an online training camp video.

In addition to what was shared in our October policy update, we have also updated our policies regarding:

  • Violent content
  • Pornographic content
  • Execute the process

Please visit the Play Administration center for more details.

Important Update Reminder

Android 11, App Bundle, and settlement library V3

From August 2021, new applications will require:

  • Run with API level 30 (Android 11) or higher as the target environment and adapt to changes in the system’s behavior.
  • Publish in Android App Bundle format and use Play Asset Delivery or Play Feature Delivery to deliver resources or features with download sizes over 150MB. Please note that extension files (also known as OBBs) are no longer supported for new applications.
  • New apps must use version 3 or later of the Clearing library, which offers new ways for users to pay, subscription promotions, attribution of game purchases, and improved shopping reliability and security.

Starting in November 2021, updated versions of apps must target API level 30 or higher, be adjusted to accommodate behavior changes in Android 11, and use clearing library version 3 or higher. Existing apps that have not been updated will not be affected and users can continue to download from the Play Store.

Package visibility

For apps running Android 11 or later (SDK 30) :

  • You need to use the QUERY_ALL_PACKAGES privilege to view all other installed applications:
  • Use the claim form in the Play Administration to declare the use of this permission.
  • The applications installed on the device belong to personal/sensitive user data. Please obtain the proper range of visibility permissions.

We know that updating the application may take some time, so we will give you 60 days’ notice of the deadline.

Data Security Section

We’re adding a “Security” section to your App details on Google Play where you can inform users about your privacy and security measures. You can also check out Google Play’s new security introduction video for more details.

In this section, you can outline what data your application collects or shares and highlight privacy and security details, such as whether your application has data encryption.

We have also made several updates to our User Data policy to enhance privacy and security:

  • All apps must make their privacy policy clear in the Google Play Administration and within the app.
    • Privacy policies must include information such as data retention and deletion policies.
    • Applications must submit privacy policies even if they do not access any personal and sensitive user data.
  • Developers must provide clear and accurate information about what personal or sensitive user data their apps collect or share.
  • If your app is aimed at children, the SDK you use must be approved before it can be used for a child-oriented service.

The Play Administration is ready to start submitting content for the “Data Security” section. Here are a few key points:

  • October 2021: Start filling out your “data Security” form and adding a privacy policy
  • February 2022: Users will see the feature in the Google Play Store
  • April 2022: Deadline for approval of forms and privacy policies

Note: In addition to checking how your app collects and shares user data, you should also check how any third-party code in your app (such as third-party libraries or SDKS) collects and shares such data. It is your responsibility to ensure that all such code used in your application complies with the Play Developer Program policies. You must specify in your application’s data security form how such third-party code collects or shares data.

Family policy details

Google Play is committed to providing a positive and safe environment for children and families. Please note that if the target audience of the app includes children, the following requirements must be complied with, otherwise the app may be removed or suspended.

  • App Content: Kid-accessible content in your app must be kid-friendly.

  • Application functions: Your application should not serve the sole purpose of providing a WebView of a website, nor should it serve the main purpose of attracting affiliate marketing traffic to a website, no matter who owns the corresponding website, this is a violation of the rules.

  • Answers in Play Admin: You must truthfully answer questions about your app in Play Admin; If the application changes, the answer should be updated to reflect the change. This includes, but is not limited to, interactive elements that accurately declare application in content grading questionnaires, such as:

    • Whether users of the application can interact with each other or exchange information
    • Whether the app will share user-provided information with third parties
    • Whether the application will share the user’s actual location information with other users

  • Advertising: If your app displays ads to children or users of uncertain ages, you must:

    • Only a Google Play certified AD SDK is used to serve ads to these users.

    • Ensure that the ads shown to these users do not involve ads targeted to users’ interests (ads targeted to individuals with certain characteristics and based on their online browsing behavior) or remarketing functions (ads targeted to individuals and based on their previous interactions with an app or website).

    • Make sure the ads shown to these users present child-friendly content.

    • Ensure that the ads shown to these users comply with home AD format requirements.

    • Ensure compliance with all applicable regulations and industry standards relating to advertising to children.

  • In-app purchases: Google Play re-verifies the user’s identity before making any in-app purchases that are part of the Play-with-Kids program to help ensure that the person approving the purchase is not a child.

  • Data practices: If your app collects any personal and sensitive information from children (including through apis and SDKS called or used by your app), you must disclose this behavior in your app. Children’s sensitive information includes, but is not limited to, identity verification information, microphone and camera sensor data, device data, Android IDS, and AD usage data. You must also ensure that your application follows the following data practices:

    • Android AD Identifiers (AAID), SIM card serial numbers, version serial numbers, BSSID, MAC, SSID, IMEI and/or IMSI obtained from children or users of uncertain age shall not be transmitted.
    • You may not request a device phone number through the TelephonyManager of the Android API.
    • Child-specific apps may not solicit, collect, use or transmit location information.
    • Unless your application only supports device operating system versions that are incompatible with the CDM, your application must use the CDM when requesting Bluetooth permission.

  • Apis and SDKS: You must ensure that your application uses all apis and SDKS in an appropriate way.

    • Kids-only apps may not contain any API or SDK that is not approved for use in services primarily aimed at children, including Google Login Services (or any other Google API services that access data associated with Google accounts), Google Play games services, And any other API services that use OAuth technology for authentication and authorization.

    • If the app’s target audience includes both children and older users, the app may not use an API or SDK that is not approved for use in a child-oriented service, unless such API or SDK is used in conjunction with unbiased age screening or implemented in a way that does not collect data on children. If the target audience of the app includes both children and older users, the app shall not require users to log in or access the app content through an API or SDK that is not approved for use in child-oriented services.

    • Apps that join the Family Fun program can only use self-approved advertising SDKS.

  • Augmented Reality (AR): If the application uses augmented reality, you must ensure that security warnings are immediately displayed when the AR section is started. Warnings should contain the following information:

    • Remind parents of the need to monitor their children’s use of apps.
    • Alert users to risk factors in the real world (e.g. be aware of the surrounding environment).
    • Your app should not require the use of devices that are not recommended for children (such as Daydream and Oculus).

  • Social Apps and Features: If your app allows users to share or exchange information, you must accurately disclose these features in the Play Administration’s content rating questionnaire.

    • Social apps: A social app is an app whose primary purpose is to allow users to share or communicate with a large group of people in any format. As long as the target audience of a social app includes children, it is important to remind children of online safety and the actual risks of online interaction through in-app messages before allowing them to exchange media content or information in any format. You must also ask an adult to perform an action before allowing child users to exchange personal information.

    • Social features: Social features are any additional application features that allow users to share or communicate with large groups of people in any format. As long as the target audience of the app includes children and provides social features, it is important to remind children of online safety and the actual risks of online interaction through in-app messages before allowing them to exchange media content or information in any format. You must also provide adults with a way to manage social features for children, including but not limited to enabling/disabling social features or selecting different levels of functionality. Finally, you must ask an adult to perform an action before you can enable a feature that allows children to exchange personal information.

    • Adult action is a mechanism to verify that the user is not a child and to discourage children from gaining access to content designed for adults in an app by misrepresenting their age. Specific measures include requiring an adult PIN number, password, date of birth, photo ID, credit card, Social Security number (SSN), or email verification.

If the primary purpose of a social app is to chat with strangers, it should not be aimed at children. Examples include chatroulette apps, dating apps, and open chat rooms for kids.

  • Legal compliance: You must ensure that your app (including the API or SDK invoked or used by your app) complies with the PROVISIONS of the CHILDREN’s Online Privacy Protection Act (COPPA), the General Data Protection Regulation (GDPR) of the European Union, and any other applicable law or regulation.

  • Design apps for children and families

— Implementation schedule of major policies in 2021-2022

Thank you again for following the Google Play policy update, and please don’t forget to visit the App Developer Academy for free training resources.