Google has also introduced new Workspace features as we continue to work from home.
Google has outlined how the company handles customer data according to a Dutch data protection review.
Launched in October, Google Workspace is a set of business apps including Gmail, Meet, Drive, and Sheets, software that can be useful for businesses that are currently adopting a combined work-from-home or workplace model.
The Data Protection Impact Assessment (DPIA) was recently published by the Dutch data protection agency, outlining comparisons between data processing in Google Workspace.
DPIA includes the original ten ‘risk’ factors for government agencies applying Google Workspace, citing issues including a lack of transparency regarding the purposes behind the processing of both customer data and diagnostic data; potential legal gray areas around both the tech giant and government agencies serve as controllers or processors of data, the default setting is “not privacy friendly” and the ability to spread between ‘one account’ users in personal and business settings.
On Monday, EMEA South’s Google Cloud Director Samuel Bonamigo said in response to the DPIA and a separate review of Google Workspace for Education assigned to the Dutch government, Google “welcomes the opportunity to show our commitment to privacy and security.”
Google is in discussions with the Dutch government about the concerns raised, but would like to stress that the Spaces solutions have been designed “to protect the security and privacy of our customer data.”
“Our cloud is designed to empower the strict security and privacy requirements and expectations of European organizations,” Google said. We comply with regulatory and compliance requirements to protect customer data. And we believe it’s important for us to be transparent about our products and activities.”
Google says that user data or services that are not used for targeted ads or create ad profiles and that ads that are not shown in Workspace and Workspace for Education Core Services, are premium versions of existing tools. Customer data in the cloud is also only processed based on customer agreements and is kept under user control, the company said.
Google has also created a Google Cloud Privacy Notice to outline how service data is processed, along with a Google Workspace for Education data protection implementation guide (). PDF) new.
“Our goal in addressing DPIA is to be completely transparent to our customers, regulators, and policymakers on open issues,” google said. “We will continue to discuss the findings with the Dutch government over the next few months, with the goal of reaching an agreement that will lead to more options for public sector institutions in the Netherlands and beyond.”
In related news, Google has also updated Google Workspace with new features including new security access controls, a “Workspace Frontline” function for key employees who need to use their own devices to access the company’s resources, improve end-to-end management, and support the Google Assistant in workspaces.
On Monday, Google warned of an increase in bots targeting businesses, not only to carry out Distributed Denial of Service (DDoS) attacks, but also to use bots to collect content and other forms of attacks.