reCAPTCHA is a part of Google Cloud Fraud Defense. For more information, see Google Cloud Fraud Defense.

Understand tier downgrades

A downgrade transitions your reCAPTCHA project to a lower product tier. This occurs when a project no longer meets the eligibility criteria for its current tier.

Why projects are downgraded

A tier transition typically happens for one of the following reasons:

Enterprise to Premium: Your Enterprise subscription has expired, lapsed, or is no longer active, or the project was unlinked from an account with an active subscription.
Premium to Essentials: The billing account associated with your Google Cloud project has been unlinked, disabled, or has billing issues, such as outstanding payments.

Grace period

Fraud Defense provides a 30-day grace period for Enterprise to Premium downgrades. During this time, you retain access to Enterprise features so you can resolve billing issues or update your integration. After the 30-day grace period expires, access to Enterprise-exclusive features is removed.

Impact on features

A downgrade reduces the features available in your project to match the target tier:

Downgrades to Premium: You lose access to Enterprise-exclusive features. For a side-by-side comparison of features, see the features comparison table.
Downgrades to Essentials: You lose access to Premium features, and your monthly free assessment limit is capped at 10,000. Assessments beyond this limit return the HTTP 429 (Resource Exhausted) error.

Impact on existing integrations

Depending on the features you use, a downgrade can cause API errors or user interface changes:

Advanced reason codes: The CreateAssessment response no longer contains advanced reasons in the extended_verdict_reasons field. If your backend relies on these codes, update it to use standard classification reasons.
Related accounts API: Calls to related account endpoints return a PERMISSION_DENIED error. You must stop calling these APIs.
Transaction defense: If you request transaction assessments without sending a frontend token, the API returns a PERMISSION_DENIED error. To continue using Transaction defense, you must implement a frontend integration.
ATO analytics: The accountTakeoverVerdict field is empty or missing from the accountDefenderAssessment response. Backend logic expecting this field must be updated to avoid errors.
UI-only features: Features such as Site-specific fraud reports and Attack investigations no longer appear in the Google Cloud console.

Verify your feature usage

To determine if your integrations will be affected by a downgrade, verify the following:

Check backend code for references to extended_verdict_reasons (see Interpret assessments for websites) or accountTakeoverVerdict (see Detect and prevent account takeovers) in assessment responses.
Check if your backend calls any Related accounts API endpoints.
Check if you are making transaction assessments without frontend tokens (see Install transaction defense).

Prevent or restore from a downgrade

To prevent service disruption or restore access to features, resolve the billing or subscription issues:

Restore Enterprise status: Associate your project with an active billing account that has a valid Fraud Defense subscription. If you need a new subscription, contact your Google Cloud sales representative or Google Cloud sales.
Restore Premium status: Ensure your project is linked to an active, valid Google Cloud billing account.

Understand tier downgrades Stay organized with collections Save and categorize content based on your preferences.