Google has made changes to the Play Store directory rules that restrict the VpnService API provided by the platform. The new rules prohibit the use of VpnService to filter the traffic of other applications for the purpose of monetization, the hidden collection of personal and confidential data, and any manipulation of advertising that may affect the monetization of other applications.
Services are also mandated to enforce encryption for tunneled traffic and comply with developer policies related to ad fraud, credentialing, and malicious activity. Tunnels to external servers are allowed to be created by applications that explicitly claim to perform VPN functions, and only using the VPNService API. Exceptions for accessing external servers are made for applications in which such access forms the main functionality, for example, parental control programs, firewalls, antiviruses, mobile device control programs, network tools, remote access systems, web browsers, telephony systems, etc. .P.
The changes will come into effect on November 1, 2022. Among the goals of the rule change is to improve the quality of advertising on the platform, improve security and combat the spread of false information. The new rules are expected to protect users from dubious VPN applications that track user data and redirect traffic to manipulate ads.
However, the change will also affect legitimate applications, such as VPN applications with privacy features that use the mentioned functionality to cut ads and block calls to external services that track user activity. Blocking the manipulation of ad traffic on a device can also negatively impact apps that bypass monetization restrictions, such as redirecting ad requests through servers in other countries.
Examples of apps that will be broken include Blokada v5, Jumbo, and Duck Duck Go. Blokada developers have already bypassed the introduced restriction in the v6 branch by switching to filtering traffic not on the user's device, but on external servers, which is not prohibited by the new rules.
Other policy changes include a ban on full-screen ads effective September 30 if the ad cannot be turned off after 15 seconds, or if the ad pops up unexpectedly when users try to perform some action in the app. For example, full-screen ads that are shown as a splash screen at startup or during gameplay, including when moving to a new level, are prohibited.
Starting tomorrow, there will also be a ban on hosting applications that mislead users by impersonating another developer, company or other application. The prohibition covers the use of other company logos and apps in icons, the use of other company names in a developer's name (for example, posting on behalf of "Google Developer" by a person not affiliated with Google), false claims of affiliation with a product or service, and infringements related to using trademarks.
Starting today, there is a requirement that paid subscription apps provide user-visible means to manage and cancel subscriptions. This includes providing access to a simple method for unsubscribing online in the application.
Source: opennet.ru