It might be a case where illegal / scam / anything of that type were using the SSLMate service to issue and deploy those certificates, whereas some aspects of this process (DNS / HTTP / Mail) verification or similar were processed directly on the GCP.

I could not get from the OP what really happened and what was the claim / explanation from Google side.

This is very similar to how DoIT manage their client projects. I needed to add one of their service accounts to my organization's IAM policy so they could have complete visibility over all resources for monitoring / cost reporting purposes. The only potential difference being that DoIT is a Google Cloud Premier Partner™

This is why using Google Fi Wirelessis a really bad idea since you can lose your phone at any time for no reason.

It's important to keep in mind that many (if not most) people ad-blocking google ads do so because of the fear of malware (usually from youtube).

So to Google, killing accounts of malicious actors is a primary concern, and obviously you can wield a lot of damage to people through google's services if unchecked. And even with checks, every bad actor wears the mask of innocence when appealing.

So this puts Google in a rather intractable position. Without numbers it's hard to say whether they are leaning to hard towards stopping fraud (many false positives), or too hard towards giving accounts freedom (high levels of malware served).

About once a year some server provider kicks me out, burns down, or extorts/hikes prices on me specifically. All data is already mirrored to servers at other providers, so I just need to spin up the main infra somewhere else. I can do this in seconds on anything that accepts ssh connections. The slowest step is waiting a few minutes for DNS to propagate.

If you're at the mercy of a single company that probably couldn't care less about the minuscule amount of revenue you represent, your operation has a problem and I have no respect for what you do.

Sometimes I think what's the worst it could happen if Google decided to delete my main personal account that I use for everything: banking, utilities...

I guess it would a hassle to go to the bank but loosing some images or old emails wouldn't be so catastrophic TBH. Maybe being somewhat nihilistic/minimalist I think that it all will still be lost when I die, so why trying to grasp those things? In some sense it's kind of liberating not depending too much on these kind of things.

If this were actually a real problem then, perhaps, rather than just posting grievances on a blog, people should (en masse) just start hounding their employees directly since most of them will proudly announce their affiliation via LinkedIn and other social media.

This is the only way. Why would people who build these things give a crap if their quality of life is great save for a blog post?

They are your customer service. All of them. And your complaints will eventually meaningfully get addressed.

Did you send spam or conduct business in a way that resembles malicious scanning behavior?

I know Google sucks and it’s impossible to get anyone to fix anything, but one thing they don’t do is take arbitrary and capricious action. I don’t want to hear a long sob story. First I want to hear what you did wrong (I suspect you know what you did to get flagged) that caused suspension.

I don't use Google cloud but the seven step OIDC configuration process is the kind of thing that can be scripted quite easily in Azure, e.g. using the az CLI tool. When a step creates a new object the command can return its ID so you can save it in a variable and use it in a subsequent step.

If Google has something similar this seems preferable to the alternatives.

Honestly, many companies are suicidal to put "everything" in the hand of AWS or Google, thousand of accounts are banned everyday, a simple accidental VPN/Tor connection can lead to losing everything (at least temporarily) and their rules aren't transparent so we can't really anticipate it.