In a move to bolster cybersecurity and protect user data, Google is set to commence the deletion of inactive accounts this week. This decision follows the company’s announcement back in May, outlining its plan to remove accounts that have remained dormant for at least two years.
The primary motivation behind this initiative is to mitigate security risks associated with older, less active accounts. Google’s internal findings revealed that these accounts are more likely to rely on recycled passwords and are less inclined to employ up-to-date security measures like two-step verification. This makes them particularly vulnerable to threats such as phishing, hacking, and spam.
Google has been proactive in notifying users about this impending action since August, issuing multiple alerts to affected accounts and their provided backup email addresses. As part of a phased approach, the first accounts to face deletion are those created by users who never revisited them after their initial setup.
The scope of this account deletion policy extends across the entire Google suite, encompassing services such as Gmail, Docs, Drive, and Photos. Consequently, all content associated with inactive users’ Google accounts is at risk of erasure.
However, there are some exceptions to this sweeping deletion process. Google has specified that accounts with associated YouTube channels, those with remaining balances on gift cards, accounts used for purchasing digital items like books or movies, and those that have published active apps on platforms such as the Google Play store will be spared from deletion.
This move represents a significant step beyond Google’s previous policy established in 2020. At that time, the company focused on wiping content from services users had stopped using, without deleting the accounts themselves.
The decision to delete old accounts aligns with industry experts’ recommendations, such as Oren Koren, CPO and Co-founder of cybersecurity firm Veriti. According to Koren, old accounts are often perceived as low-risk targets and can be exploited by malicious actors. The deletion of these accounts forces potential hackers to create new accounts, which now require phone number verification. Additionally, this action removes older data that might have been compromised in previous data breaches.
Google’s proactive removal of these accounts reduces the attack surface for cybercriminals, aligning with a broader trend in cybersecurity focused on enhancing digital security landscapes.
To ensure the preservation of your Google account, a straightforward solution is available. Users need only log in or utilize any Google service at least once every two years. This minimal level of activity will safeguard their accounts from being marked for deletion, ensuring continued access to Google’s extensive suite of services.
As Google takes this proactive approach to enhance security, users are encouraged to take a few moments to interact with their accounts and keep their valuable data safe from potential threats.