Google Play announced Tuesday it will now award verification badges to VPN apps that meet stringent privacy and security standards. The badges, visible on app detail pages and in search results, aim to help users quickly identify trustworthy services in a crowded—and often murky—market.

Why now? the TikTok connection

The timing isn’t accidental. As TikTok remains unavailable on Google Play and Apple’s App Store in regions like Montana (due to ongoing privacy debates) and parts of Asia, users are flocking to VPNs to bypass geo-restrictions. However, this surge has raised alarms about shady providers exploiting demand.

The road to verification: no easy feat

To earn the badge, VPNs must jump through several hoops:

• Pass Google’s Mobile Application Security Assessment (MASA) Level 2, a rigorous audit evaluating code integrity, data handling, and vulnerability management.
• Rack up 10,000+ installs, 250+ reviews, and maintain a 90-day presence on Google Play.
• Disclose data collection practices and submit to independent security reviews.

Early winners

Among the first to receive badges are industry heavyweights like NordVPN, hide.me, and Aloha Browser. NordVPN, which boasts 14 million global users, praised the initiative as “a step toward standardizing trust in tech.”

Google’s privacy push: a work in progress

This isn’t Google’s first crack at Play Store accountability. In 2022, it introduced privacy labels (mimicking Apple’s App Store approach) and later added badges for apps completing independent security reviews.

Expert tips: how to choose a VPN

While verification badges simplify decisions, experts recommend users:

• Avoid “free” VPNs: Many monetize through data sales.
• Check for audits: Look for third-party endorsements, like those from Cure53 or PricewaterhouseCoopers.
• Review privacy policies: Ensure providers adhere to “no-logs” claims.