Permissible Usage

  • Google's Android Management API is restricted to commercial EMM developers and Device Trust solution providers who build and offer device management and/or Device Trust solutions to external end customers.

  • Device Trust signals from the Android Management API are intended exclusively for providing Device Trust/enterprise IT security to end customers on both EMM-managed and non EMM-managed devices.

  • To access and use the API, developers and providers must have direct agreements with end customers and inform them about data access and usage.

  • Several management scenarios and technology uses, such as device financing solutions or solutions for exclusive monitoring, are explicitly not allowed.

  • Android Management API has default quotas, including a limit on registered devices and queries per 100 seconds, which can be increased by request.

The use of Google's Android Management API and associated SDK ("Service") are restricted solely to commercial Enterprise Mobility Management (EMM) developers, Device Trust from Android Enterprise (Device Trust) solution providers, and Original Equipment Manufacturers of Android devices (OEMs). All users of the Service must comply with this Permissible Usage policy. Device Trust solution providers are Identity Providers (IDPs), Mobile Threat Defenders (MTDs), Endpoint Detection & Response (EDR), Security Information and Event Management (SIEM) and security operations tools. EMM developers and Device Trust solution providers are organizations that build device management and/or Device Trust solutions and offer their solutions to their end customers through commercial sales to entities outside of their immediate company or parent entity, and who support these end customers directly.

The Services can be used by OEMs only to enable enterprise mobility management features on their devices in order to comply with the Android GMS requirements.

Device Trust signals provided by the Service are exclusively for providing Device Trust/enterprise IT security to end customers on both EMM-managed and non EMM-managed devices.

In order to access and use the Service, EMM developers or Device Trust solution providers must:

  • Have a direct agreement with its end customers, respectively, for the purposes of building device management and/or Device Trust solutions.
  • Inform end customers and its users, as appropriate, about its access and use of data from its use of the Service.

The following management scenarios and technology uses are not allowed:

  • Device financing solutions - including those used in conjunction with hardware lease arrangements or other B2C/retail scenarios — that manage, restrict, or control device usage or functionality based on payment status (e.g., non-payment of Equated Monthly Installments (EMI))
  • Solutions developed exclusively for the purpose of device or user monitoring, fingerprinting, or eavesdropping independent of enterprise management.
  • Alteration of a commercially available Android Device to subsequently sell, resell or lease such altered device.
  • Push, preload or auto install applications and/or services on Android Devices without the express and informed prior consent of relevant customers and their end users.
  • Solutions developed and used exclusively for first party in-house applications.
  • Usage of the Service policies and commands on non EMM-managed devices except for Device Trust solutions.
  • Usage of the Device Trust signals with the legacy Device Admin functionality.
  • Usage of the Device Trust signals in solutions using the accessibility APIs.
  • Usage of the Device Trust signals in conjunction with the Advertising ID or for advertising tracking purposes.

Google reserves the right to revoke access to the Service or limit access to certain features if an EMM developer or Device Trust solution provider fails to comply with these usage requirements.

To inquire about potential usage of the Service outside of the stated guidelines above, you can complete and submit this form.

Quotas and Restrictions

The Service enforces the following quotas and restrictions:

  • To request an initial quota of up to 500 devices, you will need to provide a full business justification.
  • To exceed the 500 device quota you will need to apply to Android Enterprise through this form
  • Default quota of 1000 queries per 100 seconds for each project. For example, if you make 1000 requests in 1 second, you won't be able to make any more requests for the next 99 seconds.

You can request the initial quota, a quota increase and/or the removal of restrictions using this form.