Google Play to Display Independent Security Audit Badges for VPN Apps
VPN apps in the official Google Play Store will now feature a special “Independent Security Review” badge if they have passed an independent audit. This initiative is based on the MASA (Mobile App Security Assessment) standard, introduced last year as part of the App Defense Alliance (ADA).
What Is the MASA Standard?
The MASA standard was created to define a specific set of security criteria for mobile applications. These criteria cover data storage and privacy, cryptography, authentication and session management, network interactions, platform integration, and code quality.
How the Badge System Works
Google will now highlight apps it considers critical for user privacy and security with a special badge, which will appear in the Play Store’s Data Safety section. This badge indicates that the app meets the MASA standard and has been verified by independent experts.
VPN apps are the first to receive this independent verification badge, but Google plans to expand this practice to other types of apps in the future.
How Developers Can Get the Badge
To receive the badge in the Google Play Store, developers must undergo a MASA audit with an approved cybersecurity partner. Among the VPN vendors that have already passed this audit and received the new badge in the Google Play Store are:
- NordVPN
- Google One
- ExpressVPN
Other VPN Apps with MASA Certification
There are also other VPN apps that have a valid MASA certificate but have not yet received the corresponding badge in Google Play. These include:
- Aloha Browser + Private VPN
- Private Internet Access VPN
- SkyVPN — Fast Secure VPN
- Tomato VPN
- vpnify — Unlimited VPN Proxy
This new badge system aims to help users make more informed decisions about the security and privacy of the apps they choose to install from the Google Play Store.