Harden brand safety in 2026: stop low-quality inventory at the account level
Brands and ad ops teams in 2026 face two simultaneous pressures: automated buying (Performance Max, Demand Gen, programmatic RTB) that drives efficiency — and fractured controls that expose spend to low-quality inventory and brand risk. If you still manage placement blocks campaign-by-campaign, you’re bleeding time and taking unnecessary risk. This playbook shows how to combine account-level exclusions with programmatic controls to reduce publisher risk, minimize ad fraud exposure, and preserve ROI.
Why account-level exclusions matter now (2026 context)
In January 2026 Google Ads introduced official account-level placement exclusions, letting advertisers apply one exclusion list across Performance Max, Demand Gen, YouTube and Display campaigns. That change is a watershed — automation-heavy formats needed stronger guardrails. At the same time regulators and market events (European Commission action, publisher eCPM shocks) have increased volatility in supply quality.
Source: Google Ads rollout (Jan 15, 2026) and industry reporting on platform and publisher instability in early 2026.
The bottom line: centralizing exclusions is a capability — but it's only part of a modern brand-safety architecture. Use it in concert with DSP/SSP controls, verification providers, and log-level analytics for a measurable reduction in risk.
Quick outcomes you can expect
- Faster mitigation: one update stops unwanted placements across accounts.
- Lower CPA volatility: fewer low-quality clicks and bot traffic leaking into conversion paths.
- Cleaner reporting: centralized exclusions simplify attribution checks and fraud triage.
- Operational scale: fewer manual blocks, faster change management for global accounts.
Core components of a hardened brand-safety stack
Think of brand safety as layered defenses. Account-level exclusions are the gate; programmatic controls are the moat and sentry. Your stack should include:
- Account-level exclusion lists (Google Ads + platform equivalents).
- DSP/SSP pre-bid filters (The Trade Desk, DV360, Xandr, MediaMath).
- Verification partners (IAS, DoubleVerify, Protected Media) for pre- and post-bid checks.
- Supply-path optimization (SPO) and ads.txt / sellers.json hygiene.
- Log-level reporting (BigQuery, Snowflake) and automated anomaly detection.
- Publisher risk scoring and dynamic whitelists for high-value inventory.
Practical tactics: step-by-step implementation
1. Build a canonical exclusion taxonomy
Create one master schema that your entire ad ops org uses. Minimal fields:
- Entity type: domain / app / channel / content category
- Risk reason: explicit brand risk / low-quality inventory / suspected fraud
- Source: manual audit / third-party detection / publisher complaint
- Scope: account-level / campaign-level / adgroup-level
- Status and review cadence
Store this in a simple CSV or sheet that syncs to your ad platforms via API. Making this canonical avoids fragmentation between teams and tools.
2. Implement account-level exclusions in Google Ads first
Use the new account-level placement exclusions in Google Ads as your primary, broad gate. Practical steps:
- Start with high-confidence blocks: known fraudulent domains, adult sites, and content categories you never want beside your ads.
- Deploy exclusion list to account with a clear naming convention: e.g., "ACL – Global Brand Safety v1 – 2026-01".
- Enable change logging and tag the change with a reason and owner.
- Monitor spend and impressions for 48–72 hours to catch unintended over-blocking (some whitelisted inventory might be misclassified).
Account-level exclusions are powerful; start conservative and iterate.
3. Mirror exclusions across DSPs and platforms
Google’s account-level control only covers Google properties. To avoid cross-platform drift, mirror the same exclusion lists into each DSP/SSP. Tactics:
- Automate list push via APIs. Maintain one master list in a source-of-truth repo (CSV/JSON in Git or a cloud bucket).
- Use naming and IDs so updates are idempotent — avoid duplication and stale entries.
- For platforms that lack API support, schedule a weekly manual sync with change logs.
4. Apply programmatic pre-bid filters and SPO
Account-level exclusions are post-selection blocks in some flows. Pre-bid filters reduce auction exposure. Actions:
- Set blocklists at the DSP level for domain, app, and channel-level attributes.
- Implement SPO: prefer direct supply and verified sellers (PMPs, guaranteed deals). Remove low-quality SSPs from bid streams.
- Use pre-bid vendor signals (viewability, historical fraud rates) to set bid multipliers or zero bids.
5. Layer verification: pre- and post-bid
Combine pre-bid verification (to avoid auctions that look risky) with post-bid measurement (to flag slips):
- Work with an independent measurer (IAS, DoubleVerify) for pre-bid fraud scoring and brand safety segments.
- Run post-bid audits every 24–72 hours for anomalies in CTR, viewability and conversions. Flag patterns tied to specific publishers.
- Keep samples of creative and landing pages when investigating suspicious placements.
6. Score publisher risk and automate actions
Assign a risk score to each publisher domain and automate block/whitelist behavior based on thresholds. Sample scoring inputs:
- Historical CTR and conversion rate vs. peer cohort
- Anomalies in session duration, bounce rate
- Verification partner fraud score
- Ads.txt and sellers.json compliance
- Manual editorial concerns (brand adjacency)
Example rule: if fraud score > 70 or seller non-compliant, auto-add to exclusion list and pause bidding for 24 hours pending review.
7. Use log-level data and ML for anomaly detection
Centralized exclusions won’t stop every vector. Use raw impressions and click logs to detect micro-patterns quickly:
- Stream ad logs to BigQuery or Snowflake for near-real-time queries.
- Run weekly ML models to detect outliers in CTR/CR by domain – flag sudden spikes in conversion rate or extremely low dwell times.
- Automate alerts and suggested exclusion list updates for ad ops review.
Operational playbook: examples and guardrails
Below are specific, tested sequences you can operationalize inside an ad ops team.
Play 1: Rapid response to a suspected supply shock
- Trigger: post-bid verification shows 40% drop in viewability for a top campaign.
- Action: add suspicious domains to account-level exclusion list (Google) and push to DSP blocklists.
- Mitigate: reroute spend into PMP deals and high-quality private curations while investigating.
- Post-mortem: update publisher risk score, remove or maintain exclusion after 7–14 day review.
Play 2: Fighting ad fraud spikes
- Trigger: anomalous surge in clicks from mobile apps with low session duration.
- Action: deploy pre-bid app bundle block via DSP and add app IDs to account-level app exclusion list.
- Prevent recurrence: use a fraud detection partner to identify SDK-level issues and push remediation to supply partners.
Play 3: Protecting brand adjacency in automated formats
- Trigger: automated format (Performance Max) serving beside sensitive content clusters.
- Action: update account-level content exclusions and configure brand safety orchestration in the verification vendor to enforce category blocks.
- Follow-up: establish a monthly content adjacency audit and adjust creative targeting.
Measurement: how to prove the controls work
Measurement must be quantitative and repeatable. Key metrics:
- Impression share on excluded domains (should drop to zero)
- CTR, viewability and conversion rate deltas pre/post-exclusion
- CPAs and ROAS stability
- Number of publisher incidents and average time-to-block
- False positive rate (legitimate publishers incorrectly blocked)
Set a 90-day baseline, then measure 7/30/90 day windows after deploying account-level exclusions and DSP mirroring. Expect some short-term CPM or impression loss but improved CPA stability and brand safety scores over 30–90 days.
Risks and trade-offs — what to watch for
Blocks reduce reach. Overaggressive exclusion policies can harm performance and increase CPAs. Operations pitfalls include:
- Stale blocklists inflating false positives
- Uncoordinated cross-platform updates that reintroduce risk
- Reliance on a single verification vendor (use at least two data sources for high-stakes campaigns)
- Regulatory changes (EC scrutiny, ads.txt enforcement) that alter supply dynamics — stay updated)
2026 trends and future-proofing
Three trends to incorporate into your roadmap:
- Automation with guardrails: Expect more automated formats. Use account-level exclusions as the standard guardrail and treat DSP rules as dynamic complements.
- Supply consolidation and regulatory impact: EC and global regulators continue to pressure ad tech. That will shrink and reconfigure supply paths — keep SPO and seller verification workflows current.
- ML-first anomaly detection: As fraudsters automate, you must automate anomaly detection with ML models trained on log-level data rather than manual audits alone.
Case vignette (anonymized)
We worked with a global retail advertiser in late 2025 who saw CPA spikes and placement complaints across multiple markets. Steps we took:
- Deployed a master account-level exclusion list in Google Ads and synchronized it with The Trade Desk and DV360.
- Implemented SPO to reduce low-quality SSPs and moved 25% of budget to PMPs for high-value audiences.
- Streamed logs to BigQuery and built a daily anomaly job that flagged domains with CTR > 3x expected and dwell time < 10 seconds.
Outcome after 60 days: 22% reduction in non-viewable impressions, 14% improvement in CPA stability, and a 45% drop in support tickets about placement complaints. The client preserved reach by shifting to verified PMPs rather than unfocused broad blocks.
Checklist: immediate 30-day action plan
- Create canonical exclusion taxonomy and owner map.
- Deploy a conservative account-level exclusion in Google Ads.
- Mirror the list to all DSPs and SSPs via API.
- Activate pre-bid filters and enforce ads.txt / sellers.json checks.
- Engage a verification partner for pre- and post-bid validation.
- Stream logs to a central warehouse and run an initial anomaly detection job.
- Set up a 30/60/90 day measurement cadence and report to stakeholders.
Final recommendations
Account-level exclusions are a game-changer for scaling brand safety across modern automated buying. But they are most effective when combined with programmatic pre-bid controls, SPO, verification partners, and log-level ML monitoring. Treat exclusions as part of an adaptive, measurable ecosystem — not a one-time checklist.
Get started: tools and templates
If you want to move fast, start with these practical assets:
- A master exclusion CSV template (domain, app ID, reason, owner, status)
- API sync scripts for Google Ads, The Trade Desk and DV360 (example pseudocode in your repo)
- A sample BigQuery anomaly query to detect suspicious CTR/CR spikes
We publish these templates and an exclusion orchestration checklist — request them as part of an audit.
Call to action
Ready to harden brand safety without sacrificing performance? Book a 30-minute ad ops audit with our team to get a customized exclusion taxonomy, cross-platform sync scripts, and a 30‑day action plan. Or download our free account-level exclusion template and API sync checklist to start locking down risky inventory today.
Related Reading
- Color of Lipstick, Color of Prints: What Everyday Color Choices Teach Creators About Palette Decisions
- The Ultimate Vegan Tea-Time Spread: From Viennese Fingers to Plant-Based Teas
- When to Buy and When to Wait: Tech Deals Calendar for Early 2026
- From Horror to Harmony: Crafting a Thematic Album Inspired by Film Aesthetics (Lessons from Mitski)
- CES 2026 Highlights for Gamers: 7 Products Worth Adding to Your Setup Now