Track 1 platform and get the weekly governance digest. No credit card required.
This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology
This document establishes Google Cloud's privacy notice for users of Google Cloud services and developer tools, specifying the categories of personal information collected including account identifiers, email addresses, billing details, and service usage data. The document distinguishes between direct Google Cloud customers, whose data processing is governed by this notice, and end users of third-party applications deployed on Google Cloud infrastructure, whose data processing is governed by separate data processing agreements between Google and the deploying organization. Direct Google Cloud customers may access and modify personal data settings through Google Account privacy controls at myaccount.google.com.
This document is the Google Cloud Privacy Notice, governing how Google collects, uses, and shares personal information from individuals who interact with Google Cloud services, including cloud.google.com, Google Cloud Platform, and Google Workspace for business customers. The notice states that Google collects account registration data, payment information, usage and diagnostic data, and communications content, and the terms authorize use of this data for service delivery, support, security, billing, and product improvement. A structurally notable provision establishes that customer data uploaded to Google Cloud (defined as 'Customer Data') is processed under the separate Cloud Data Processing Addendum rather than this notice, creating a two-tier privacy framework where end-user protections depend substantially on the contractual choices made by the business customer deploying Google Cloud. The notice engages GDPR and related EU/EEA frameworks, CCPA for California residents, and references Google's broader cross-product privacy infrastructure; applicability of specific rights and obligations depends on user jurisdiction and the type of Google Cloud service being accessed. Compliance teams should note that the notice explicitly defers privacy governance of Customer Data to the data processing agreement executed between Google and the business customer, meaning individuals whose data is processed via a Google Cloud-powered application may have limited direct recourse under this notice.
Institutional analysis available with Compliance
Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.
Start Compliance free trialMonitoring
Google Cloud has updated this document before.
Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
Compliance Governance Intelligence
Need provision-level monitoring and regulatory mapping?
Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.
Start Compliance free trialCross-platform context
See how other platforms handle Cross-Service Data Combination and similar clauses.
Compare across platforms →Governance Monitoring
Structured alerts for policy changes, governance events, and provision updates across 318+ platforms.