Other Covered Entities

See Purposes of Data Collection section for details on scope of cert

Industries

  • Information and Communications Technology

Participation

Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 4/18/2017
Next Certification Due Date: 9/25/2018
Data Collected: HR, NON-HR

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 9/25/2017
Next Certification Due Date: 9/25/2018
Data Collected: HR, NON-HR

Purpose of Data Collection

This certification applies to Google LLC and its wholly-owned U.S. subsidiaries, but specifically excludes Calico Life Sciences LLC, Sidewalk Labs, LLC, Kaggle, Inc., CapitalG Management Company LLC, GV Management, LLC, Google Fiber, Inc., Verily Life Sciences LLC, Waymo, LLC and any other wholly-owned U.S. subsidiary to the extent of any current separate self-certification by such entity. Personal data other than human resources data: Data is processed for various purposes depending on the particular product or service being provided, including: sales and marketing to consumers and businesses; supplying services and products to consumers and businesses; operating, developing and improving Google services and products; personalizing Google services and products; financial processing and management; supplier, vendor and partner relationship management; fraud prevention, security, and protection of Google and our users; compliance with governmental, legislative and regulatory bodies; and customer support and relationship management. Data is disclosed to third parties as detailed in our Privacy Policy, including: in situations in which we have consent, for external processing, with domain administrators, and for legal reasons. Human resources data: Data is processed for various employment and legal purposes, including: recruitment and staffing; compensation, benefit programs and payroll; performance management and training; compliance and risk management; workplace management; protection against injury, theft, legal liability, fraud and abuse; and other business purposes. Data is disclosed to third parties as detailed in our Privacy Policy, including for business-related and legal purposes.

Privacy Policy

HR Data

Google Employee Privacy Policy
Description:

Describes how Google collects and uses employee data. Available to employees on Google internal sites and services. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Google Employee Privacy Policy.

Effective Date: 9/18/2017

Non-HR Data

Description:

Explains the data that we collect and why we collect it, how we use that data, and the choices we offer to control that data. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Bitium Privacy Policy.

Effective Date: 5/25/2018
Description:

Explains the data that we collect and why we collect it, how we use that data, and the choices we offer to control that data. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Google Careers Privacy Policy.

Effective Date: 9/20/2016
Description:

Explains the data that we collect and why we collect it, how we use that data, and the choices we offer to control that data. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Google Privacy Policy.

Effective Date: 9/20/2016
Description:

Explains the data that we collect and why we collect it, how we use that data, and the choices we offer to control that data. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Google Registry Privacy Policy.

Effective Date: 9/19/2016
Description:

This Privacy Policy describes how the company implements the Privacy Shield Principles with respect to EU and Swiss consumers who visit Nest’s websites.

Effective Date: 9/24/2018
Description:

This Privacy Statement describes how the company implements the Privacy Shield Principles with respect to EU and Swiss consumers who use Nest’s products and services.

Effective Date: 9/24/2018
Description:

Explains the data that we collect and why we collect it, how we use that data, and the choices we offer to control that data. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Qwiklabs Privacy Policy.

Effective Date: 9/21/2017
Description:

Explains the data that we collect and why we collect it, how we use that data, and the choices we offer to control that data. The EU Data Protection Authorities (DPAs) serve as the dispute resolution provider for Stackdriver Privacy Policy.

Effective Date: 9/19/2016

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Google LLC at:

Keith Enright
Director, Privacy Legal
Google LLC
Google Data Protection Office
1600 Amphitheatre Pkwy
Mountain View, California 94043

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Google LLC to your question or complaint, please contact the independent recourse mechanism listed below




Appropriate statutory body with jurisdiction to investigate any claims against Google LLC regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission