The short version
The Google Pixel 10 is the first mainstream smartphone to ship with native C2PA Content Credentials. Announced in September 2025, every photo taken with the Pixel Camera app is cryptographically signed using hardware-backed keys in the Titan M2 chip. The Pixel 10 achieved Assurance Level 2 - the highest security rating in the C2PA Conformance Programme.
Beyond Google, Samsung has announced C2PA support for future Galaxy devices, and Qualcomm's Snapdragon platform has C2PA capability built into the ISP. Apple has not made a public commitment. For non-Pixel phones, third-party apps like Truepic Lens provide C2PA-signed capture today.
Current status by manufacturer
| Manufacturer | Status | Details |
|---|---|---|
| Google (Pixel 10) | Live | Native C2PA in Pixel Camera app since September 2025. Assurance Level 2. Tensor G5 + Titan M2 hardware-backed signing. Content Credentials viewable in Google Photos. Works offline. |
| Samsung | Announced | Committed to C2PA in future Galaxy flagships. No shipping date confirmed. Likely tied to next Galaxy S or Galaxy Z generation. |
| Apple (iPhone) | No announcement | Apple has not publicly committed to C2PA. However, Apple is a member of the C2PA coalition through its participation in related initiatives. The A-series and M-series chips have the hardware capability. |
| Qualcomm | Platform support | C2PA signing integrated into Snapdragon ISP pipeline since 2024. Any phone using a recent Snapdragon chip has hardware-level C2PA capability - the manufacturer just needs to enable it. |
Google Pixel 10: the breakthrough
The Pixel 10 launch in September 2025 was the inflection point for smartphone content provenance. Google didn't just add C2PA as an optional feature - they made it the default. Every JPEG captured with the Pixel Camera app includes Content Credentials showing when and how the image was captured, with a cryptographic signature that can be independently verified.
How it works: The Tensor G5 processor and Titan M2 security chip handle signing entirely on-device. C2PA claim signing keys are generated and stored in the Titan M2's tamper-resistant hardware. Anonymous, hardware-backed attestation ensures privacy - no personal information is included, and individual images can't be traced back to a specific user. The system works offline using an on-device trusted timestamping system.
What gets signed: All photos from the Pixel Camera app - including both unedited captures and AI-modified images (Magic Eraser, Best Take, etc.). Google Photos on Android displays Content Credentials in the "About" panel, showing the full provenance chain. Edits made in Google Photos are also recorded in the credentials.
Verification: Content Credentials from Pixel 10 photos can be verified at contentcredentials.org/verify or in any C2PA-compatible tool. The signing certificate identifies "Google LLC" and "Pixel Camera" as the signer.
The significance: The Pixel 10 was the first device to achieve Assurance Level 2 in the C2PA Conformance Programme - the highest security level currently defined. This sets the bar for every other smartphone manufacturer. When Samsung or Apple eventually ship C2PA, the Pixel 10's implementation is the benchmark they'll be measured against.
Third-party apps for other phones
If you don't have a Pixel 10, you can still sign photos with Content Credentials using third-party apps:
Truepic Lens
The most established C2PA mobile capture app. Truepic Lens captures photos and videos with Content Credentials attached at the moment of capture. The app uses Truepic's signing infrastructure and certificates, which are on the C2PA Trust List - meaning credentials from Truepic Lens are trusted by verification tools.
Truepic Lens is used by news organisations, insurance companies, and human rights documentarians who need verified mobile capture. It's available on both iOS and Android.
Numbers Protocol Capture
Numbers Protocol's Capture app signs photos with C2PA Content Credentials and optionally registers them on a blockchain for additional permanence. The app is focused on creators and citizen journalists who want provenance that persists even if the original file is shared widely.
ProofMode
Developed by the Guardian Project and WITNESS, ProofMode is focused on human rights documentation and evidentiary capture. It adds C2PA-compatible provenance data along with additional sensor information (accelerometer, light sensor) to strengthen the evidentiary chain of custody. Open-source and privacy-focused.
Third-party capture apps sign photos with Content Credentials, but they use their own camera interface rather than the phone's native camera app. This means you get C2PA provenance, but you miss out on computational photography features (Night Mode, HDR+, Portrait Mode, etc.). This is what makes the Pixel 10's native integration significant - it combines Google's full camera processing pipeline with C2PA signing. Until Samsung and Apple follow suit, non-Pixel users face this trade-off.
Why smartphone C2PA matters
Smartphones capture the vast majority of the world's photographs. The Pixel 10's native C2PA support is a landmark moment, but Google's global smartphone market share is small. For the standard to achieve its goal - enabling anyone to verify any image's provenance - it needs to be on Samsung Galaxy and iPhone devices too.
The EU AI Act may accelerate this. While the Act's content labelling requirements primarily target AI-generated content, the broader regulatory momentum toward content authenticity creates market pressure for all smartphone manufacturers to support provenance. Google has set the benchmark. Samsung and Apple are now under pressure to match it.
What to do right now
If you have a Pixel 10: You're already set. Content Credentials are enabled by default - every photo you take is signed. You can view credentials in Google Photos' "About" panel or verify any image at contentcredentials.org/verify.
If you have a different Android phone or an iPhone, use Truepic Lens for the most reliable, trust-listed C2PA implementation. If you're a developer building a mobile app that needs C2PA, the c2pa-c library provides bindings suitable for iOS and Android integration.
If you want Samsung or Apple to ship C2PA: Tell them. Google's Pixel 10 announcement came after sustained industry and community pressure. Samsung and Apple are watching the same signals. The more people who ask, the sooner it ships.
Last updated March 2026. Contact us with corrections or updates.
Related: C2PA for Photographers 路 Adoption Tracker 路 What Is C2PA?