Consumer Rights Wiki - User contributions [en]

Bootloader unlocking

2025-08-29T17:52:16Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: /* Workaround Google Play Services */ Add Unified Push to list

{{ToneWarning}}

Unlocking the bootloader of a smartphone allows the user to install an alternative system on the device, also more popularly known as a custom ROM.<ref>{{Cite web |date=19 Aug 2025 |title=Android ROM |url=https://www.pcmag.com/encyclopedia/term/android-rom |url-status=live |archive-url=https://web.archive.org/web/20241223222958/https://www.pcmag.com/encyclopedia/term/android-rom |archive-date=23 Dec 2024 |website=PCMag}}</ref>

==Availability==
Unlocking the bootloader is only [[Phones that do not allow bootloader unlock|possible on some, but not all Android devices]]. Apple has measures in place to prevent users from installing third party operating systems on iPhones and iPads.

==Features==

==='''1. Better Privacy'''===
Most custom ROMs do not contain any of the components that send data to the manufacturer, Google, and their partner companies.<ref name=":0" /> In some cases, they even contain components that prevent individual apps from doing so, such as:

*[https://doc.e.foundation/support-topics/advanced_privacy_main.html /e/'s Advanced Privacy]
*[https://calyxos.org/docs/tech/datura-details/ CalyxOS's Datura Firewall]
*[https://github.com/iodeOS/ota iodéOS's blocker]

====Workaround Google Play Services====
On a default Android system there is a deep integration with Google Play Services. This is a system process that requires access to files, contacts, storage, call logs, SMS messages, location, camera and microphone. And without this process running, basic system apps will not function.<ref>{{Cite web |last=Aragon |first=Jonah |date=21 Jul 2024 |title=Android |url=https://www.privacyguides.org/en/android/#install-a-custom-distribution |url-status=live |access-date=17 Aug 2025 |website=Privacy Guides}}</ref> Alternative systems avoid this process entirely, or use a privacy preserving workaround such as:

*[https://grapheneos.org/features#sandboxed-google-play GrapheneOS's Sandboxed Google Play]
*[https://github.com/microg/GmsCore/wiki MicroG]<ref>{{Cite web |last=Gordon |first=Arielle |date=7 Jun 2019 |title=The Open Source Project That Keeps Google's Hands Off Your Android Data |url=https://www.vice.com/en/article/the-open-source-project-that-keeps-googles-hands-off-your-android-data/ |url-status=live |archive-url=https://web.archive.org/web/20250630130025/https://www.vice.com/en/article/the-open-source-project-that-keeps-googles-hands-off-your-android-data/ |archive-date=30 Jun 2025 |access-date=19 Aug 2025 |website=Vice}}</ref>
*[https://unifiedpush.org/ Unified Push]

==='''2. Expanding Device Lifespan'''===
Most custom ROMs are free of bloatware and can thus be used extend the longevity of phones that have become unusable due to the default system growing larger with each manufacturer update. Especially on low-end phones, these updates usually end up exhausting the built-in storage after sometimes as little as two years. This renders the devices slow and unstable and leaves no room for user data. Custom ROMs are typically much smaller than the manufacturer software. Consequently, many old phones can run even faster with a custom ROM than they were when new, thus often more than doubling their useful lifespan.<ref>{{Cite web |title=By how much do custom roms really extend Phone lifespans? |url=https://www.reddit.com/r/AndroidQuestions/comments/gdq2rc/comment/fpj11ay/ |access-date=2025-08-23 |website=Reddit}}</ref><ref>{{Cite web |date=2023-03 |title= |url=https://community.e.foundation/t/xiaomi-redmi-8a-olivelite-with-dual-sim/29192/12 |access-date=2025-08-23 |website=/e/OS Community}}</ref>
==='''3. Updates after device is abandoned by manufacturer'''===
Low-end devices usually receive only a few years or even months of security updates.<ref>{{Cite web |title=Android Update Matrix |url=https://www.androidupdatetracker.com/update-matrix |access-date=2025-08-23 |website=Android Update Tracker}}</ref> Since most custom ROMs are built by the open source community, installing one of these custom ROMs allows users to receive security updates for the Android system and default components like web browser engines and PDF readers much longer than with the manufacturer's OS.

==='''4. Customisation'''===
Some applications cannot be removed easily with the default OS. A custom ROM can be used to only include the applications the user wants, potentially with customisation that isn't originally available by default.

==Alternative Android-based Operating Systems==
These include, but are not limited to:

*[https://grapheneos.org/ GrapheneOS]
*[https://iode.tech/iodeos/ IodéOS]
*[https://e.foundation/e-os/ /e/OS]
*[https://lineageos.org/ LineageOS]
*[https://calyxos.org/ CalyxOS]

*[https://source.android.com/ AOSP (Android Open Source Project)] , also known as "stock" Android.<ref>https://eylenburg.github.io/android_comparison.htm</ref><ref name=":0">{{Cite web |last=Patel |first=Pratham |date=20 Feb 2024 |title=5 De-Googled Android-based Operating Systems to Free Your Smartphone from Google and other Big Tech |url=https://itsfoss.com/android-distributions-roms/ |url-status=live |archive-url=https://web.archive.org/web/20250707220149/https://itsfoss.com/android-distributions-roms/ |archive-date=7 Jul 2025 |access-date=19 Aug 2025 |website=It's FOSS}}</ref>

==References==
<references />

Home Connect

2025-08-29T16:38:37Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: /* Links */ Format as list

{{StubNotice}}
'''Home Connect''' is the IoT Ecosystem brand for home appliances by the ''B/S/H Group'' which is the home of these appliance brands: ''Bosch'', ''Siemens'', ''Gaggenau'', ''<u>Neff</u>'', ''Thermador'', ''Constructa'', ''Balay'', ''Pitsos'', ''Junker'', ''Profilo''.<ref>[https://www.bsh-group.com/ B/S/H Group website]</ref>

==Anti consumer practices==
Products that are part of this service, such as home appliances (dishwashers, etc.), require the user to register with a BSH owned single-sign-on-provider and create a cloud account to enable the Wi-Fi functionality.<ref>[https://www.youtube.com/watch?v=8XDBJ_CPi9I How to connect your Siemens washing machine to the Home Connect app]</ref> After this you are allowed to disconnect the appliances from the cloud and use it offline with their app (no official local API provided) which bears the question of ownership of the device.

On 23th of March, 2025, Youtuber Jeff Geerling, under his second channel [https://www.youtube.com/@Level2Jeff Level 2 Jeff], uploaded a [https://www.youtube.com/watch?v=5M_hmwBBPnc video] detailing his process of installing a new Bosch 500 Series dishwasher in his home, and only after installing it, realizing it requires access to his Wi-Fi and an account in the Bosch's Home Connect Cloud, with some basic features like Rinsing and Delayed Washing not functioning without internet access. He details how the device took several seconds to boot up, having touch controls that didn't work properly and not having buttons for basic controls. Looking into the manual, several options were marked with an asterisk, with small text on the bottom of the page indicating a "required account on the Home Connect Cloud". He further explains that since the service is free, he anticipates that Bosch is either going to require a subscription fee in the future or shut the service down when it is no longer viable for the manufacturer to maintain it.

The manufacturer claims this to be necessary for security and call the (only after registration available) offline option 'No Cloud mode.'<ref>[https://trmm.net/homeconnect/ Hacking your dishwasher (or Cloudless Home-Connect Appliances)], Trummel Hudson, trmm.net, Oct.2022</ref> Primary function of the app is not controlling the device, but up-selling more B/S/H products, which can be discerned from that it takes two clicks upon opening the app the see the remaining time on the washing program, but immediately shows more purchasable products.

==Links==

* [https://www.youtube.com/watch?v=5EVf9a-nji4 YouTube video: B/S/H manager explaining their favorite Home Connect features]
* [https://www.youtube.com/watch?v=5M_hmwBBPnc YouTube video: Jeff Geerling with explanation of his own dishwasher and Home Connect]
* [[Bosch Cloud Dishwasher Incident]]

==References==
<references />

Android Developer Verification

2025-08-29T08:14:12Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: /* Consumer response */ Formatting

{{StubNotice}}

{{IncidentCargo
|Company=Google
|StartDate=2025-08-25
|Status=Active
|ProductLine=Google-certified Android devices
|Product=Android
|ArticleType=Service
|Type=Anticompetitive Behavior, Digital restrictions, Privacy
|Description=A planned restriction that forces developers to submit their identity to Google and pay a fee for their apps to be installable onto Android devices.
}}

On August 25th 2025, Google has announced an upcoming application installation restriction on Google-certified Android devices, unless the developer is registered and verified through their Developer Verification program, which in some cases requires a legal identity document verification as well as a flat fee.

==Background==
On the Android mobile operating system, the user can, currently, freely install applications developed by anyone, with no kinds of penalty as to their origin, feature set or purpose. The only requirements is that the application follows the technical guidelines, that ensure that the application will be functional on the device, and is signed with any kind of certificate, which is required to maintain a chain of trust during application updates.

==Introduction of Developer Verification==
On August 25th 2025, Google has released<ref>{{Cite web |date=2025-08-25 |title=Android developer console {{!}} Android developer verification {{!}} Android Developers |url=https://developer.android.com/developer-verification |url-status=live |archive-url=https://web.archive.org/web/20250825180832/https://developer.android.com/developer-verification |archive-date=2025-08-25 |access-date=2025-08-25}}</ref> a roadmap of a new requirement for application installations called the Developer Verification, which will require developers to register on the Android Developer Console, if they want their applications to be installable after the roll out of this system. When registering, the developers are offered a choice<ref>{{Cite web |date=2025-08-25 |title=Android developer verification {{!}} Android Developers |url=https://developer.android.com/developer-verification/guides/android-developer-console |url-status=live |archive-url=https://web.archive.org/web/20250825204008/https://developer.android.com/developer-verification/guides/android-developer-console |archive-date=2025-08-25 |access-date=2025-08-25}}</ref> between "Limited" and "Full" distribution types. The "Limited" distribution type is considered by Google to be best for "students, hobbyists, and other personal use", and is free to register, unlike the "Full" distribution type, which is considered to be suited for "organizations and professional developers with wide distribution". The "Limited" type is stated to have a "capped number of apps and installs", unlike the "Full" type. It is currently unclear whether or not the "Limited" type requires any kind of identity verification, as opposed to "Full", which requires full identity verification, as stated by Google.

===Google's response===
{{Ph-I-ComR}}

==Consumer response==
{{Ph-I-ConR}}Alongside the announcement, Google provided a Q&A page for existing developers to ask further questions<ref>{{Cite web |date=2025-08-25 |title=Q&A: New Android developer verification requirements |url=https://support.google.com/googleplay/android-developer/thread/361325854 |access-date=2025-08-29 |website=Play Console Help}}</ref>. There was a range of responses, some with practical questions about the implementation whereas others highlighting key flaws with the plans from both a consumer and developer perspective including:

*The hypocrisy of enforcing security on side loaded apps (i.e. user installed apps not from the playstore) whilst Google's playstore maintains its levels of scamware, malware and adware.
*The ambiguity of the announcement leading some to conclude you would have to pay a one time $25 fee to install apps on your own device.
*Confusion over the requirement to register every package name before it can be installed leading some developers whom beta test multiple versions of the same app to register huge slightly duplicated package names.
*The confusion over 'development version' apps being installed over ADB (a USB android debugging interface) and how they would persist and whether they need full verification.
*The requirement of app signing thus potentially meaning installing apps requires an internet connection. This essentially bricks the functionality of devices that are intended to be used offline e.g. barcode scanners in supermarkets etc.

There has also been much kickback by the android community with a plethora of videos<ref>{{Cite web |last=Mental Outlaw |date=2025-08-29 |title=Google is Locking Down Android |url=https://www.youtube.com/watch?v=L1S0SiBuJN8 |access-date=2025-08-29 |website=YouTube}}</ref><ref>{{Cite web |last=BrenTech |date=2025-08-26 |title=Google Will Soon Block Apps from Unverified Developers! Is This The End of Sideloading on Android? |url=https://www.youtube.com/watch?v=-nCgnXByGrY |access-date=2025-08-29 |website=YouTube}}</ref><ref>{{Cite web |last=TechLore |date=2025-08-27 |title=Android Is Becoming iOS: The End of Sideloading? |url=https://www.youtube.com/watch?v=PxGjwtiI8uM |access-date=2025-08-29 |website=YouTube}}</ref> being published online, including Google's own platform YouTube, about the harms this will cause and the angry user sentiment.

==References==
{{reflist}}

[[Category:Android]]

Jailbreak

2025-08-29T08:10:39Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: /* Legality */ Converted section about legality into a table and added information regarding the legal situation in Germany

{{Stub}}
'''Jailbreaking''' (also known as '''rooting''') is the act of gaining control of the software on a device.<ref>{{Cite web |title=JAILBREAK Definition & Meaning {{!}} Dictionary.com |url=https://www.dictionary.com/browse/jailbreak |url-status=live}}</ref>

==Reasons to jailbreak==

Jailbreaking enables users to install unsigned applications and tweak functionality of the OS.<ref>{{Cite web | title = FAQ {{!}} iOS Guide |url=https://ios.cfw.guide/faq/ |url-status=live}}</ref> It also allows users to [[Piracy | pirate]] applications on their devices.

==Legality==
{| class="wikitable"
|+
!
!Country
!Legal?
!Details and Source
|-
|🇩🇪
|Germany
|Yes
|<ref>{{Cite web |last=Aschermann |first=Tim |date=2018-09-07 |title=iPhone/iPad Jailbreak - legal oder illegal? |url=https://praxistipps.chip.de/iphoneipad-jailbreak-legal-oder-illegal_46467 |access-date=2025-08-29 |website=CHIP}}</ref>
|-
|🇺🇸
|United States of America
|Yes
|Jailbreaking was declared exempt from the[[Digital Millennium Copyright Act | DMCA]] in 2010<ref>{{Cite news |last=Kravets |first=David |date=July 26, 2010 |title=U.S. Declares iPhone Jailbreaking Legal, Over Apple’s Objections |url=https://www.wired.com/2010/07/feds-ok-iphone-jailbreaking/ |url-status=live}}</ref>
|}

==References==
<references />
[[Category:Common terms]]

Malicious compliance

2025-08-29T08:00:04Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: Expanded explanation a bit, added two well-known examples

{{Stub}}
Malicious compliance is an action where one complies with a request or demand, but in such a way that it follows the wording, but not the spirit or intent of the mandate.

Applied to consumer rights, this means a manufacturer or brand complies with regulations in word, but not in spirit, thus rendering the regulation ineffective.

Some common practices include making it intentionally difficult for a consumer to exercise their rights through use of [[Dark pattern|dark patterns]], obstacles such requiring communication by letter, imposing fees, requiring registration and many more.

== Prominent Examples ==

* [[Apple]]: After being required by the EU to open up their devices to apps sold outside the [[Apple App Store]], the company created a multitude of hurdles, fees and complications to make it as difficult as possible for developers to actually do this, including a requirement that every independently distributed app stil be approved by Apple and fees be paid by the developer.<ref>{{Cite web |last=Mendes |first=Marcus |date=2025-05-27 |title=EU ruling: Apple’s App Store still in violation of DMA, 30 days to comply |url=https://9to5mac.com/2025/05/27/apple-dma-30-days-deadline/ |access-date=2025-08-29 |website=9to5Mac}}</ref>
* [[Apple]]: After the EU mandated USB-C as a charging port for all phones, Apple explored various ways to still require cable and accessorty manufacturers to go through their costly [[Made for iPhone]] certification programmes and require consumers to still buy additional cables and accessories.<ref>{{Cite web |last=Roberts |first=Paul |date=2023-09-12 |title=Will Apple Use a Loophole in EU’s USB-C Requirement? |url=https://de.ifixit.com/News/81197/will-apple-use-a-loophole-in-eus-usb-c-requirement |access-date=2025-08-29 |website=iFixit}}</ref>

[[Category:Common terms]]

Microsoft Office 365

2025-08-28T13:28:05Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: /* Incidents */ Added forced autosave to cloud in Word

{{Incomplete|Issue 1= All issues in this article need sources (| Issue 2= }}
'''[[wikipedia:Microsoft_365|Microsoft 365]]''' is a family of software, including Microsoft Word, Microsoft PowerPoint, and Microsoft Excel. The branding '''Office 365''' was introduced in 2010 to refer to its subscription-based [[software as a service]], including hosted services such as Office on the web.

==How to avoid Price Increase (At least for Microsoft 365 Personal Subscriptions)==
[[File:Screenshot 2025-04-05 205541.jpg|thumb|Cancel Microsoft 365 Personal Screenshot, showing the cheaper subscription plan]]
If you currently have a "Microsoft 365 Personal" subscription, and don't want to pay the $30 price increase, there is a way to "revert" back to the $69.99 subscription. Sign in to your Microsoft account, and go to your current subscriptions. Click on your "Microsoft 365 Personal" subscription, then click on cancel subscription. It will then give you the option to switch to the "Microsoft 365 Personal Classic" subscription (see image to right for reference), which is Microsoft's new name for what was the "Microsoft 365 Personal" subscription. There is a [https://www.reddit.com/r/microsoft/comments/1i7jrek/microsoft_365_personal_goes_up_in_price_by_30/ reddit thread] on how to do this, which is linked if you want to read through it as well.

==Consumer Impact Summary==
{{Placeholder box|Overview of concerns that arise from the conduct towards users of the product (if applicable):
* User Freedom
* User Privacy
* Business Model
* Market Control}}

==Incidents==

===Microsoft Copilot on by default (Word, PowerPoint, Excel)===
In the current version of Office 365, Microsoft Copilot is turned on by default. It can be turned off in some of the Office applications' options (Word, Excel, but not PowerPoint, though Microsoft say they'll add the "off" button to PowerPoint in February 2025).

===Forced upsell===
In January 2025, YouTuber Atomic Shrimp reported<ref name="video-explanation">{{cite web|author=Atomic Shrimp|title=Microsoft’s Sneaky Forced-Upsell to 365 Users; If You Don’t Need/Want Copilot, Don’t Pay for It|url=https://www.youtube.com/watch?v=eYVPThx7yss|website=Youtube|date=25 Jan 2025|access-date=25 Feb 2025|url-status=live|archive-url=https://web.archive.org/web/20250225115451/https://www.youtube.com/watch?v=eYVPThx7yss%2A|archive-date=25 Feb 2025}}</ref> that Microsoft had enacted a "forced upsell" of 365's new AI Copilot feature. Users with basic accounts (now called "Classic"), such as Shrimp himself, had been informed their subscription fee was going up, but that they would enjoy new features as a result, including Copilot. In his efforts to disable Copilot, Shrimp subsequently discovered that Microsoft now offered "Classic" plans, identical to the old basic plans both in features and in subscription fee. The option to downgrade to Classic, however, was only visible to enterprise users, not to personal users. In essence Microsoft upgraded users' plans without their consent and disabled the option to downgrade, forcing the user to contact Microsoft support in order to opt out of the newly introduced Copilot AI features. The forceful upgrade was at the user's expense, and the downgrading process through support, according to Shrimp, was very time consuming. It is possible to downgrade a personal account through the website without contacting support. If you go to the first page of the cancellation process, there should be an option to downgrade to the "Classic" plan.

File request, a common feature in other cloud service providers' ''free'' plans, that allows you to invite users to anonymously upload files to a designated cloud folder (e.g. group vacation photos) is only available in personal plans if every uploader is logged-in to a Microsoft account. If you want anonymous uploads, you have to upgrade to a One Drive for Business-Account. Since this is a common feature in other providers' free private plans (e.g. Dropbox), consumers subconsciously expect it to be a feature in paid personal OneDrive plans of the highest tier, but it's not offered.

===Obfuscation of local saving in favor of OneDrive (Word, PowerPoint, Excel)===
Because of OneDrive, since the introduction of Office 365, saving files locally has been getting more and more difficult to do. Previously, the user would get the expected saving dialog with a pop-up to browse their computer and choose a file-storage location. This is now multiple clicks away, making it harder to avoid saving the file on OneDrive, Microsoft's cloud service.

Files on one's computer are also automatically uploaded to OneDrive by default, causing numerous issues (such as synchronization errors and duplicate files) Turning off this automatic backup is also of considerable difficulty, as one has to navigate a number of settings to get to this option.

To mitigate this somewhat, user can go into Options > Save > Set the check mark on "save locally as default". It still takes multiple clicks to save a file, but the cloud options are at least a bit less intrusive.

===Forced Diagnostic Data Transmission===
Versions other than the Enterprise or Education volume licensing editions do not allow turning telemetry off fully. Moreover, the setting is configured to the least private setting by default.

Office transmits data about 23 000 to 25 000 different types of events<ref>https://www.privacycompany.eu/blog/impact-assessment-shows-privacy-risks-microsoft-office-proplus-enterprise</ref> (other reports in context of the German BSI audit speak of 30 000 types of events) to Microsoft. Microsoft can adjust the level of detail transmitted remotely. This can go up to every single keystroke being broadcast live to Microsoft servers in the background.

Given that it is not uncommon in some countries even for hospital to run consumer versions of the software, the privacy implications are tremendous. It cannot reasonably be assumed that any data entered into nor any interaction with a Microsoft Office application will stay private.

===Publisher Removal from Microsoft 365 Computers (Oct. 2026)===
In October 2026, Microsoft will be removing Publisher from computers<ref>{{Cite web |last=Poremsky |first=Diane |date=2025-03-31 |title=Can people keep using Microsoft Publisher unsupported after the end of support date in October 2026 |url=https://learn.microsoft.com/en-us/answers/questions/5389573/can-people-keep-using-microsoft-publisher-unsuppor}}</ref> with Microsoft 365 as part of their "end of support" of the application.

=== Automatically saving Word Documents to the Cloud (August 2025) ===
In its company blog, Microsoft announced that Word would from now on create documents and save their autosave information to Microsoft servers by default. This setting can be manually reconfigured to use the local computer.<ref>{{Cite web |last=Munoz |first=Raoul |date=2025-08-26 |title=Save new files automatically to the cloud in Word for Windows |url=https://techcommunity.microsoft.com/blog/microsoft365insiderblog/save-new-files-automatically-to-the-cloud-in-word-for-windows/4445216 |access-date=2025-08-28 |website=Microsoft 365 Insider Blog}}</ref>

This leads to all information in the document being uploaded to Microsoft servers even before a user has the chance to select local storage when first saving the document.

==See also==
*[[Software as a service]]
*[[Dark pattern]]

==References==

[[Category:Microsoft Office]]
[[Category:Subscription-based services]]
<references />

Google Android restrict app sideloading

2025-08-28T13:07:43Z

2A02:810D:548D:E500:5C12:AC0E:83CE:3E2E: /* Consumer response */ Grammar

On 25 August 2025, '''[[Google]]''' announced that starting in 2026, the company will block the installation of Android apps from outside the Play Store unless the developer has verified their identity with Google. The policy will first roll out in Brazil, Indonesia, Singapore, and Thailand in September 2026 with global enforcement targeted for 2027.<ref name=":0">{{Cite web |last=Frey |first=Suzanne |date=25 Aug 2025 |title=A new layer of security for certified Android devices |url=https://android-developers.googleblog.com/2025/08/elevating-android-security.html |url-status=live |access-date=25 Aug 2025 |website=Android Developers Blog}}</ref><ref name=":1">{{Cite web |last=Perez |first=Sarah |date=25 Aug 2025 |title=Google will require developer verification for Android apps outside the Play Store |url=https://techcrunch.com/2025/08/25/google-will-require-developer-verification-for-android-apps-outside-the-play-store/ |url-status=live |access-date=25 Aug 2025 |website=TechCrunch}}</ref> This marks a significant change to Android's long-standing support for sideloading apps and has sparked debate among developers, consumers, and digital rights advocates.<ref name=":2">{{Cite web |last=Anderson |first=Tim |date=26 Aug 2025 |title=Google kneecaps indie Android devs, forces them to register |url=https://www.theregister.com/2025/08/26/android_developer_verification_sideloading |url-status=live |access-date=26 Aug 2025 |website=The Register}}</ref><ref name=":3">{{Cite web |first= |date=26 Aug 2025 |title=Google will block sideloading of unverified Android apps starting next year |url=https://www.bleepingcomputer.com/forums/t/810335/google-will-block-sideloading-of-unverified-android-apps-starting-next-year |url-status=live |access-date=26 Aug 2025 |website=BleepingComputer}}</ref>

==Background==
The open-source Android operating system has historically allowed [[sideloading]], the installation of apps from outside the Google Play Store. Users would need to enable "unknown sources" in their device settings to make this possible. This level of openness distinguished Android OS from Apple's restrictive iOS that does not allow sideloading. Alternative android app stores, such as F-Droid, Amazon's Appstore, and web downloads from sites like APKMirror, thrived under this model.<ref>{{Cite web |last=Thomas |first=Dallas |date=14 Sep 2024 |title=The Wild West days of sideloading on Android are officially over in this week's news |url=https://www.androidpolice.com/weekly-android-news-roundup-september-14-2024/ |url-status=live |access-date=25 Aug 2025 |website=Android Police}}</ref>

Over time, Google introduced restrictions to the open-source operating system citing security concerns. In 2023, Google began requiring Play Store developers to verify their identities in order to reduce "impersonation and malware."<ref name=":0" /> Android versions 13 and 15 further limited what sideloaded apps could do, blocking access to sensitive permissions for apps not installed through Google's channels.<ref name=":4">{{Cite web |last=Rahman |first=Mishaal |date=25 Aug 2025 |title=Google wants to make sideloading Android apps safer by verifying developers' identities |url=https://www.androidauthority.com/android-developer-verification-requirements-3590911/ |url-status=live |access-date=26 Aug 2025 |website=Android Authority}}</ref> These steps appear to have laid the groundwork for Google's new, broader enforcement.

==Timeline==
On 25 August 2025, Google announced that '''apps can only be installed on certified Android devices if their developers have verified their personal identity with Google'''.<ref name=":0" /> Developers must register through a new Android Developer Console, pay a one-time $25 fee (except for hobbyists or students, who will have a separate free path), and provide identifying details such as legal name, address, and government-issued ID.<ref name=":1" /><ref name=":2" /> Apps must also be registered with their signing keys to prove ownership.<ref name=":2" />

The rollout will proceed in stages:

*'''October 2025:''' Early access program for select developers.
*'''March 2026:''' Verification opens for all developers worldwide.
*'''September 2026:''' Enforcement begins in Brazil, Indonesia, Singapore, and Thailand.<ref name=":0" />
*'''2027:''' Targeted global rollout, eventually covering nearly all certified Android devices.<ref name=":0" /><ref name=":1" />

The new system applies to certified Android devices which are phones and tablets that ship with Google Mobile Services (e.g., Pixel, Samsung, Xiaomi). Devices running uncertified AOSP builds or custom ROMs (e.g., GrapheneOS, LineageOS) are not subject to this restriction.<ref name=":2" /> However, uncertified devices often face their own sideloading and app compatibility due to SafetyNet/Play Integrity checks.<ref name=":2" />

==Google's response==
Google framed this new policy as a necessary security measure to reduce malware, fraud, and impersonation. The company stated that malware is "50× more common outside the Play Store" and that anonymity allows bad actors to evade accountability.<ref name=":0" /><ref name=":2" /> Suzanne Frey, VP of Product for Android, likened the change to an ID check at the airport: verifying who the developer is without inspecting app content.<ref name=":0" />

Google emphasized that it will not review or police apps distributed outside the Play Store for content, only verify developer identities.<ref name=":0" /><ref name=":1" /> Google's move gained support from some industry and institutions, including the Developers Alliance, Brazil's banking federation FEBRABAN, and Indonesia's Ministry of Communication and Informatics, all of which praised the move as protecting users from fraud.<ref name=":0" /><ref name=":1" />

==Consumer response==
The announcement sparked backlash in online communities. On [[Reddit]], users accused Google of gradually eroding Android's openness.<ref name=":5">{{Cite web |date=26 Aug 2025 |title=Google will block sideloading of unverified Android apps starting next year |url=https://www.reddit.com/r/Android/comments/1n0f5zt/google_will_block_sideloading_of_unverified/ |access-date=26 Aug 2025 |website=[[Reddit]]}}</ref> Many argued that Android is becoming indistinguishable from iOS, with some stating that they may switch to operating systems from Apple or Linux since Android's openness was its key advantage.<ref name=":5" /><ref>{{Cite web |last=Schenck |first=Stephen |date=27 Aug 2025 |title=With developer verification, I'm struggling to think of Android as a proper smartphone platform |url=https://www.androidauthority.com/android-developer-registration-3591988/ |url-status=live |archive-url=https://web.archive.org/web/20250828113543/https://www.androidauthority.com/android-developer-registration-3591988/ |archive-date=28 Aug 2025 |access-date=28 Aug 2025 |website=Android Authority}}</ref>

Independent developers raised concerns that hobby projects or sensitive apps (e.g., protest tools, ad-blockers) would be stifled since not all creators are willing to submit government IDs to Google.<ref>{{Cite web |date=25 Aug 2025 |title=Google will allow only apps from verified developers to be installed on Android |url=https://news.ycombinator.com/item?id=45017028 |url-status=live |access-date=26 Aug 2025 |website=Hacker News}}</ref><ref name=":6">{{Cite web |date=26 Aug 2025 |title=Google wants to verify all app developers' identities |url=https://discuss.grapheneos.org/d/25235-google-wants-to-verify-all-app-developers-identities |url-status=live |access-date=26 Aug 2025 |website=GrapheneOS Discussion Forum}}</ref> Open-source communities, including GrapheneOS developers, argued this would discourage FOSS development and give Google exclusive control over Android's ecosystem.<ref name=":6" /><ref>{{Cite web |first=Sarang |date=26 Aug 2025 |title=Finally Over: Google Blocks Sideloading of Android Apps |url=https://www.androidsage.com/2025/08/26/google-blocks-sideloading-of-android-apps/ |url-status=live |archive-url=https://web.archive.org/web/20250827/https://www.androidsage.com/2025/08/26/google-blocks-sideloading-of-android-apps/ |archive-date=27 Aug 2025 |access-date=28 Aug 2025 |website=Android Sage}}</ref>

Conversely, some security experts and industry groups welcomed the move, calling it a reasonable compromise that still allows third-party distribution while deterring anonymous malware authors.<ref name=":0" /><ref name=":2" /> Critics countered that determined attackers could still exploit stolen IDs, and that this introduces a "choke point," giving Google leverage over all app installs.<ref name=":3" />

Regulators had not formally responded within the first 24 hours, but commentators noted that the change resembles Apple's Developer ID system on macOS and that it may be Google's way of tightening control while remaining compliant with the EU's {{Wplink|Digital Markets Act}}.<ref name=":4" /><ref name=":6" />

==References==
{{Reflist}}

[[Category:Incidents]]
[[Category:Android]]
[[Category:Google]]