The notice states that even after a user deletes their Gemini Apps Activity, reviewer copies of conversations may be retained by Google for up to three years under applicable retention policies.
This analysis describes what Google Gemini's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes that the user-initiated deletion of Gemini Apps Activity does not result in immediate or complete deletion of conversation data, as reviewer copies are retained on a separate retention schedule of up to three years. This creates a discrepancy between the deletion action available to users and the actual data lifecycle that compliance teams must account for when evaluating deletion request workflows.
The updated notice adds new disclosure sections explaining how data flows when using Gemini Spark (remote browser and computer access), how avatar creation collects and processes information, and clarifies that Google collects information about AI reasoning steps during task execution. The notice also refines language around subscription information to specify 'Google AI plan' rather than just generic 'paid subscription.' These changes do not establish new obligations but rather expand the transparency disclosures provided to users about existing and new features.
View change record →The updated notice now explicitly identifies Memory as a feature that operates on the basis of user consent, alongside Voice Match. The revised language removes prior geographic restrictions on personalization, meaning Gemini can now reference chat history to generate personalized insights for all users globally, not just those outside the EEA, Switzerland, and the UK. The removal of the statement 'Keep Activity must be on to use this feature' simplifies the operational requirement but does not establish a new obligation. You can learn how to turn the Memory feature on or off through the updated privacy notice.
View change record →The updated privacy notice now discloses that Gemini can use data from connected Google apps and imported memory or chats from other AI platforms to personalize your experience and to improve services, including training generative AI models. This data is treated similarly to other Gemini activity. You can manage or delete your imported activity anytime through the Activity controls.
View change record →This reveals that user deletion requests do not actually remove data from reviewer systems, creating a significant privacy gap between user expectations and actual data retention practices.
View full change record →Under this clause, deleting Gemini Apps Activity through Google's activity controls does not delete reviewer copies of conversations, which may be retained for up to three years. The agreement states that Google's retention policies govern the lifecycle of reviewer copies independently of user-initiated deletion.
How other platforms handle this
After your account is deleted, we keep data about interactions you've had on our service to prevent abuse, ban evaders and others in an effort to protect and ensure the safety and security of our service and our members.
We keep information for as long as we need it to provide our products, comply with legal obligations, or for other legitimate purposes, such as to maintain safety, security, and integrity.
We retain your personal information for as long as necessary to provide our Services, comply with our legal obligations, resolve disputes, and enforce our agreements. Even after you close your account, we may retain certain information as required by law or for our legitimate business purposes.
Monitoring
Google Gemini has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"When you delete your Gemini Apps Activity, Google's retention policies still apply and some data may be retained for a period of time. For example, when you delete your activity, reviewer copies of your conversations may be retained for up to 3 years.— Excerpt from Google Gemini's Gemini Apps Privacy Notice
1) REGULATORY LANDSCAPE: This provision directly engages GDPR Article 17 (right to erasure) and equivalent UK GDPR provisions, which require data controllers to erase personal data upon valid request subject to specific exceptions. The notice does not specify which exceptions apply to the three-year reviewer retention; compliance teams should assess whether the stated retention basis satisfies the legitimate grounds required under applicable law. CCPA deletion right provisions and equivalent US state laws are also relevant. The Irish DPC and UK ICO are primary enforcement authorities. 2) GOVERNANCE EXPOSURE: High. The assertion that reviewer copies persist for up to three years after user-initiated deletion may conflict with regulatory expectations under GDPR Article 17 unless a documented lawful basis for the extended retention is established and communicated. The notice does not specify the legal basis for this retention period, which creates disclosure and compliance gaps for EEA and UK-based users. 3) JURISDICTION FLAGS: EEA and UK users face the highest regulatory exposure given GDPR and UK GDPR erasure requirements. California residents may assess this under CCPA deletion rights. Organizations processing Gemini data on behalf of EU/UK data subjects under data processing agreements should evaluate whether this retention term is compatible with those agreements. 4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise and Workspace customers should confirm whether their data processing agreements with Google modify the three-year reviewer retention term. Standard consumer terms may not be suitable for enterprise deployments in regulated sectors where deletion obligations are contractual or regulatory. 5) COMPLIANCE CONSIDERATIONS: Legal teams should map this provision against deletion request handling procedures and assess whether responses to erasure requests adequately disclose the reviewer retention period. Policy documentation should clearly distinguish between activity deletion and full data deletion. Regulatory notifications may be required if this retention practice is found to be inconsistent with applicable law in relevant jurisdictions.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes that the user-initiated deletion of Gemini Apps Activity does not result in immediate or complete deletion of conversation data, as reviewer copies are retained on a separate retention schedule of up to three years. This creates a discrepancy between the deletion action available to users and the actual data lifecycle that compliance teams must account for when …
Under this clause, deleting Gemini Apps Activity through Google's activity controls does not delete reviewer copies of conversations, which may be retained for up to three years. The agreement states that Google's retention policies govern the lifecycle of reviewer copies independently of user-initiated deletion.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Google Gemini.