{"id":2555,"date":"2018-07-27T08:00:20","date_gmt":"2018-07-27T08:00:20","guid":{"rendered":"https:\/\/devbloglavaprotocols.nityo.in\/this-is-how-gmail-keeps-your-data-secure\/"},"modified":"2018-07-27T08:00:20","modified_gmt":"2018-07-27T08:00:20","slug":"this-is-how-gmail-keeps-your-data-secure","status":"publish","type":"post","link":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/this-is-how-gmail-keeps-your-data-secure\/","title":{"rendered":"This is How Gmail Keeps Your Data Secure"},"content":{"rendered":"<div style=\"margin-top: 0px; margin-bottom: 0px;\" class=\"sharethis-inline-share-buttons\" ><\/div><p><strong><em>By\u00a0Suzanne Frey, Director, Security, Trust, &#038; Privacy, Google Cloud<\/em><\/strong><\/p>\n<p><!--more--><\/p>\n<div class=\"module--text h-c-page\">\n<div class=\"h-c-grid\">\n<div class=\"uni-paragraph h-c-grid__col h-c-grid__col--8 h-c-grid__col-m--6 h-c-grid__col-l--6 h-c-grid__col--offset-2 h-c-grid__col-m--offset-3 h-c-grid__col-l--offset-3\">\n<div class=\"rich-text\">\n<p>We make it possible for applications from other developers to integrate with Gmail \u2014 email clients, trip planners, and <a href=\"https:\/\/lavaprotocols.com\/2017\/06\/16\/crm-system-new-ferrari-infographic\/\" target=\"_blank\" rel=\"noopener noreferrer\">customer relationship management (CRM)<\/a> systems. This is so that you have options around how you access and use your email.<\/p>\n<p>We continuously work to vet developers and their apps that\u00a0integrate with Gmail\u00a0before we open them for general access. We also give both enterprise admins and individual consumers transparency and control over how their data is used.<\/p>\n<p>On your Google account, you can visit \u2018Security Checkup\u2019\u00a0to review what permissions you have granted to non-Google apps, and revoke them if you would like to. For <a href=\"https:\/\/lavaprotocols.com\/google-apps-for-work\/\" target=\"_blank\" rel=\"noopener noreferrer\">G Suite<\/a> users, admins can control which non-Google apps can access their users\u2019 data through\u00a0<a href=\"https:\/\/support.google.com\/a\/answer\/7281227?hl=en\" target=\"_blank\" rel=\"noopener noreferrer\">whitelisting<\/a>.<\/p>\n<p>Keeping your data secure is our top priority, so we want to provide you with details about our vetting process and user controls for both enterprise and consumer accounts:<\/p>\n<h3><span style=\"color: #ff6600;\"><strong>Giving Consumers a Choice and Protecting Them from Malicious or Deceptive Apps<\/strong><\/span><\/h3>\n<p>A vibrant ecosystem of non-Google apps gives you choice and helps you get the most out of your email. However, before a published, non-Google app can access your Gmail messages, it goes through a multi-step review process.<\/p>\n<p>This review of non-Google apps includes automated and manual review of the developer, assessment of the app\u2019s privacy policy and homepage, and in-app testing, to ensure it is a legitimate app and that it works as it says it does.<\/p>\n<p>In order to\u00a0pass our review process, non-Google apps must meet two key requirements:<\/p>\n<ul>\n<li><b>Accurately represent themselves:<\/b>\u00a0Apps should not misrepresent their identity and must be clear about how they are using your data. Apps cannot pose as one thing and do another, and must have clear and prominent privacy disclosures.<\/li>\n<li><b>Only request relevant data:<\/b>\u00a0Apps should ask only for the data they need for their specific function \u2014 nothing more \u2014 and be clear about how they are using it.<\/li>\n<\/ul>\n<p>We review non-Google applications to make sure they continue to meet our\u00a0<a href=\"https:\/\/developers.google.com\/terms\/api-services-user-data-policy\" target=\"_blank\" rel=\"noopener noreferrer\">policies<\/a>, and we suspend them when we are aware they do not.<\/p>\n<h3><span style=\"color: #ff6600;\"><strong>You Control Your Data<\/strong><\/span><\/h3>\n<p>Transparency and control have always been core data privacy principles, and we\u2019re constantly working to ensure these principles are reflected in our products.<\/p>\n<p>Before a non-Google app is able to access your data, we show a permissions screen that clearly shows the types of data the app can access and how it can use that data.<\/p>\n<p>We strongly encourage you to review the permissions screen before granting access to any non-Google application.<\/p>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/div>\n<div class=\"article-module h-c-page\">\n<div class=\"h-c-grid\">\n<figure class=\"article-image--large h-c-grid__col h-c-grid__col--6 h-c-grid__col--offset-3 \">\n   <img decoding=\"async\" class=\"aligncenter\" src=\"https:\/\/4843500.fs1.hubspotusercontent-na1.net\/hubfs\/4843500\/Imported_Blog_Media\/gsuite_gmail_security_checkup_third_party__max-1000x1000.jpg\" alt=\"Security Checkup shows all third-party apps that have access to you data\" data-recalc-dims=\"1\"><br \/>\n  <\/figure>\n<\/p><\/div>\n<\/div>\n<div class=\"module--text h-c-page\">\n<div class=\"h-c-grid\">\n<div class=\"uni-paragraph h-c-grid__col h-c-grid__col--8 h-c-grid__col-m--6 h-c-grid__col-l--6 h-c-grid__col--offset-2 h-c-grid__col-m--offset-3 h-c-grid__col-l--offset-3\">\n<div class=\"rich-text\">\n<p>In addition, we\u2019ve long had data controls that you can use at any time to manage your information. For example, the Security Checkup page in your Google account\u00a0shows all the non-Google apps that have access to your data and flags potentially risky apps. In fact, you can revoke any previously-granted permissions that you are no longer comfortable with. You can also view and control permissions within\u00a0<a href=\"https:\/\/myaccount.google.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">myaccount.google.com<\/a>\u00a0under \u201cApps with account access.\u201d<\/p>\n<h3><span style=\"color: #ff6600;\"><strong>Providing Tools for G Suite Admins<\/strong><\/span><\/h3>\n<p>G Suite admins can control the scope of data that users are able to grant to non-Google apps access by\u00a0<a href=\"https:\/\/support.google.com\/a\/answer\/7281227\" target=\"_blank\" rel=\"noopener noreferrer\">whitelisting connected OAuth apps<\/a>. This ensures that G Suite users can give access only to non-Google OAuth apps that have been vetted and are trusted by their organisation.<\/p>\n<h3><span style=\"color: #ff6600;\"><strong>Providing Industry-leading Security and Intelligence in Gmail<\/strong><\/span><\/h3>\n<p>Gmail has world-class safety features, such as protections that allow us to prevent more than 99.9% of spam and phishing emails from reaching your inbox. In order to deliver these features, we conduct automatic processing of emails. This is standard practice across the industry, and also allows us to give you intelligent features like\u00a0<a href=\"https:\/\/lavaprotocols.com\/2017\/04\/19\/smart-reply-inbox-gmail-lets-smart-device-respond-emails\/\" target=\"_blank\" rel=\"noopener noreferrer\">Smart Reply<\/a>\u00a0that help you be more productive.<\/p>\n<p>We\u00a0do not process email content to serve ads, and we are not compensated by developers for API access. Gmail\u2019s primary business model is to sell our paid email service to organisations as a part of<a href=\"https:\/\/lavaprotocols.com\/google-apps-for-work\/\" target=\"_blank\" rel=\"noopener noreferrer\">\u00a0G Suite<\/a>. We do show ads in consumer Gmail, but those ads are not based on the content of your emails. You can\u00a0adjust your ads settings at any time.<\/p>\n<p>The practice of automatic processing has caused some to speculate mistakenly that Google \u201creads\u201d your emails. To be absolutely clear: no one at Google reads your Gmail, except in very specific cases where you ask us to and give consent, or where we need to for security purposes, such as investigating a bug or abuse.<\/p>\n<p>The work of privacy and security is never done, and we\u2019re always looking for ways to better protect our users. For example, we\u2019ve recently introduced\u00a0more transparency into your Google Account,\u00a0greater control over your ads settings, and\u00a0added new OAuth protections to guard against malicious apps.<\/p>\n<p><a href=\"https:\/\/www.blog.google\/technology\/safety-security\/ensuring-your-security-and-privacy-within-gmail\/\" target=\"_blank\" rel=\"noopener noreferrer\">Article<\/a> first appeared on the Google Blog.<\/p>\n<p>\u00a0<\/p>\n<p><strong><i>Lava is an authorized <a href=\"https:\/\/lavaprotocols.com\/email-and-collaboration\/\" target=\"_blank\" rel=\"noopener noreferrer\">G Suite Partner<\/a> in Malaysia. G Suite is also formerly known as Google Apps, Google Maps for Work, and Google Cloud Platform. With more than a decade of experience in the industry, we\u2019re proud to say we\u2019re one of the leading cloud consultants and service providers in the Asia Pacific region<\/i><i>.<\/i><i> <\/i><i>Email us at <a href=\"mailto:asklava@lavaprotocols.com\">asklava@lavaprotocols.com<\/a> or call us at 03-7885 9720 if you\u2019d like to know more about G Suite.\u00a0<\/i><\/strong><\/p>\n<p><script type=\"text\/javascript\">\npiAId = '418952';\npiCId = '56152';\npiHostname = 'pi.pardot.com';<\/p>\n<p>(function() {\n\tfunction async_load(){\n\t\tvar s = document.createElement('script'); s.type = 'text\/javascript';\n\t\ts.src = ('https:' == document.location.protocol ? 'https:\/\/pi' : 'http:\/\/cdn') + '.pardot.com\/pd.js';\n\t\tvar c = document.getElementsByTagName('script')[0]; c.parentNode.insertBefore(s, c);\n\t}\n\tif(window.attachEvent) { window.attachEvent('onload', async_load); }\n\telse { window.addEventListener('load', async_load, false); }\n})();\n<\/script><\/p>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/div>\n<p><span class=\"et_bloom_bottom_trigger\"><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On your Google account, you can visit &#8216;Security Checkup&#8217;\u00a0to review what permissions you have granted to non-Google apps, and revoke them if you want.<\/p>\n","protected":false},"author":1,"featured_media":2556,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[18,67],"class_list":["post-2555","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-blog","tag-google-for-work"],"jetpack_featured_media_url":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-content\/uploads\/2024\/10\/LPJuly_270718.jpg","_links":{"self":[{"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/posts\/2555","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/comments?post=2555"}],"version-history":[{"count":0,"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/posts\/2555\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/media\/2556"}],"wp:attachment":[{"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/media?parent=2555"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/categories?post=2555"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.lavaprotocols.com\/the-cloud-blog\/wp-json\/wp\/v2\/tags?post=2555"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}