Google Play Protect

Security starts at the application layer with Google Play Protect's built-in malware defense. Backed by Google's machine learning, it's always adapting and improving. Every day, Google Play Protect automatically scans all of the apps on Android phones and works to prevent the installation of harmful apps, making it the most widely deployed mobile threat protection service in the world.

On-device protection

Google Play Protect includes on-device capabilities that help keep devices and data safe. These on-device services integrate with cloud-based components that allow Google to push updates that constantly improve their functionality.

On-device security

Cloud-based security

All Android apps undergo rigorous security testing before appearing in Google Play. Google Play Protect scans 125 billion apps daily to make sure that everything remains spot on. That way, no matter where you download an app from, you know it's been checked by Google Play Protect.

Potentially Harmful Applications (PHAs)

Bad apps create bad experiences, so we work hard to keep them off devices and out of Google Play.
There are several types of PHAs, some of which are dramatically more damaging than others. The PHA categories help us define PHAs and how we treat them.
If you find a potentially harmful app, you can ask us to review it using the Android Security Malware Report form. We'll review whether it's a PHA and take appropriate action.


Google announces a partnership with ESET, Lookout, and Zimperium to create the App Defense Alliance. A collaborated effort to protect users from Potentially Harmful Apps.
At Google, we believe that if we focus on the user, all else will follow. In our Software Principles and the Unwanted Software Policy, we provide general recommendations for software that delivers a great user experience. This policy builds on the Google Unwanted Software Policy by outlining principles for the Android ecosystem and the Google Play Store.
All app updates on Google Play are required to target a certain API level. In this blog post we discuss API requirements for 2019 and our strategy moving forward.