If you run ads on Google, you may want to familiarize yourself with the latest changes affected by Google to ensure you stay compliant and avoid penalizing your account for violations. In early March this year, Google announced two new policy updates.
Google Ads Malicious or Unwanted Software Policy
First on the list is Google’s Malicious or Unwanted Software Policy. This policy update comes into effect starting May 9, 2023, with enforcement coming into full effect approximately four weeks following the update. This means some violations may only be penalized after four weeks when the policy enforcement will reach full implementation.
Starting May 9, Google Ads Malicious or Unwanted Software Policy will be split into three separate policies: malicious software, compromised sites, and unwanted software.
Malicious Software Policy
The malicious software policy seeks to control the intentional distribution of malware or malicious software that can harm a network or get unauthorized access to a computer, device, or system. This policy applies to the content of an ad or any app hosted on your site or app, regardless of whether the harmful software is promoted in a Google ad.
“After the policy update comes into effect, the policy violation will be considered egregious. Under Google ad policies, an egregious violation refers to a serious violation that crosses the line of what is lawful or poses significant harm to Google users or its advertising ecosystem,” says Seth Price, founder of MedShark Digital, a medically focused digital marketing agency.
Upon detection of such violations, Google reserves the right to suspend such accounts without warning to minimize exposing Google users to the risks posed by the breach.
Compromised Sites Policy
The compromised sites policy prevents account holders from using destinations that have been compromised or hacked. Unlike the malicious software policy, this violation is not egregious, and violators will receive a warning for seven days before suspending an account.
The hacking or compromising of a site is done by a third party to have a site act in a way that benefits them to the detriment of the site owner and its visitors, for example, to steal users’ sensitive information.
Hackers achieve this by altering and manipulating code on their target site, including injecting JavaScript to transmit data without the users’ consent. After receiving a notification of a compromised site, you must investigate to ascertain Google’s claim, fix the issue, and seek a site review.
Unwanted Software Policy
The Unwanted Software Policy will focus on ads and sites that violate Google’s Unwanted Software Policy. Google guidelines define unwanted software as any software that violates its principles, such as not being transparent and providing upfront disclosure of what the app is all about.
Violations of this policy will only result in account suspension without notice. Google will first notify the account holder of the violation at least seven days before suspending the account.
Financial Products and Services
Besides the Google ads policy updates, Google has also announced an update on its financial products and services policy, which came into effect on April 28, 2023, targeting advertisers promoting Cryptocurrency Exchanges in Indonesia.
Following the update, Google will only allow an account holder to promote cryptocurrency exchanges if they have the prerequisite Crypto Asset Physical Trader license from Bappebti, the governmental agency tasked with registering brokers in the country.
This update comes after an update on Indonesian policies toward crypto trading. Suppose Google detects a violation of this policy. In that case, it will issue a notice of violation at least seven days before suspending the account to give the user time to comply with the law.