Google · Google Privacy Policy

Data Sharing with Third-Party Partners and Advertisers

Medium severity
Share 𝕏 Share in Share 🔒 PDF

What it is

Google shares your personal data with its affiliates and 'trusted business partners' who process data on Google's behalf, as well as disclosing it when legally required — though the category of 'trusted businesses' is broad and not exhaustively defined.

Consumer impact (what this means for users)

Your personal data can be shared with Google's affiliated companies and an undefined class of 'trusted business partners,' meaning your information may be accessible to entities outside Google that you have no direct relationship with.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Export Your Data
    Visit myaccount.google.com/data-and-privacy and select 'Download your data' (Google Takeout) to obtain a copy of your personal data. California residents can also submit a data access request to understand which third parties have received their data.

Cross-platform context

See how other platforms handle Data Sharing with Third-Party Partners and Advertisers and similar clauses.

Compare across platforms →
Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

The broad 'trusted partners' category means your data may flow to a large number of third-party companies beyond Google itself, often without individual notification.

View original clause language
We do not share your personal information with companies, organizations, or individuals outside of Google except in the following cases: With your consent; With domain administrators; For external processing; For legal reasons. We provide personal information to our affiliates and other trusted businesses or persons to process it for us, based on our instructions and in compliance with our Privacy Policy and any other appropriate confidentiality and security measures.

Institutional analysis (Compliance & legal intelligence)

1. REGULATORY FRAMEWORK: Third-party data sharing implicates GDPR Art. 28 (processor obligations), Art. 26 (joint controller arrangements), and Art. 13/14 (transparency requirements for third-party recipients); CCPA/CPRA §1798.115 (right to know categories of third parties); and FTC Act Section 5 deceptive practices standards. Where sharing constitutes a 'sale' under CCPA, §1798.120 opt-out rights apply. 2.

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

  • FTC
    The FTC regulates deceptive and unfair practices in data sharing under FTC Act Section 5, including inadequate disclosure of third-party data recipients.
    File a complaint →

Provision details

Document information
Document
Google Privacy Policy
Entity
Google
Document last updated
April 29, 2026
Tracking information
First tracked
April 28, 2026
Last verified
April 28, 2026
Record ID
CA-P-003878
Document ID
CA-D-00015
Evidence Provenance
Source URL
https://policies.google.com/privacy
Wayback Machine
View archived versions →
SHA-256
aa03b38dd31cbe7f8b512c6ed4540e71344422af579a30b3181af7ba776b11a4
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: Google | Document: Google Privacy Policy | Record: CA-P-003878
Captured: 2026-04-28 08:32:10 UTC | SHA-256: aa03b38dd31cbe7f…
URL: https://conductatlas.com/platform/google/google-privacy-policy/data-sharing-with-third-party-partners-and-advertisers/
Accessed: May 2, 2026
Classification
Severity
Medium
Categories
Unknown

Other provisions in this document