Permissible Usage

The use of Google’s Android Management API is restricted solely to commercial Enterprise Mobility Management (EMM) developers and Zero Trust solution providers. All users of the Android Management API must comply with this Permissible Usage policy. Zero Trust solution providers are Identity Providers (IDPs), Mobile Thread Defenders (MTDs),Endpoint Detection & Response (EDR), Security Information and Event Management (SIEM) and security operations tools. EMM developers and Zero Trust solution providers are organizations that build device management and/or Zero Trust solutions and offer their solutions to their end customers through commercial sales to entities outside of their immediate company or parent entity, and who support these end customers directly.

The following management scenarios are not allowed:

  • Device financing solutions (e.g solutions intended to control device usage used in conjunction with hardware lease arrangements);
  • Solutions developed exclusively for the purpose of device or user monitoring, fingerprinting, or eavesdropping independent of enterprise management;
  • Alteration of a commercially available Android Device to subsequently sell, resell or lease such altered device;
  • Push, preload or auto install applications and/or services on Android Devices without the express and informed prior consent of relevant customers and their end users; and
  • Solutions developed and used exclusively for first party in-house applications.
  • Usage of the Android Management API policies & commands on non EMM-managed devices except for Zero Trust solutions.

Zero Trust signals provided by Android Management API are exclusively for providing Zero Trust/enterprise IT security to end customers on both EMM-managed and non EMM-managed devices. Additionally, in order to access and use the Android Management API, EMM developers or Zero Trust solution providers must have a direct agreement with its end customers for the purposes of building device management and/or Zero Trust solutions.

Google reserves the right to revoke access to the Android Management API or limit access to certain features if an EMM developer or Zero Trust solution provider fails to comply with these usage requirements.

To inquire about potential usage of the Android Management API outside of the stated guidelines above, you can complete and submit this form.

Quotas

The Android Management API enforces the following quotas:

  • Default quota of 500 registered devices for each project.

  • Default quota of 1000 queries per 100 seconds for each project. For example, if you make 1000 requests in 1 second, you won't be able to make any more requests for the next 99 seconds.

You can request to increase your quota in this form.