Google designed G Suite with very stringent privacy and security standards based on industry best practices. This helps our customers address their compliance and regulatory requirements. Google offers strong contractual commitments regarding data ownership, data use, security, transparency and accountability.
Google undergoes several independent third-party audits on a regular basis. The independent auditors examine the controls present in our data centres, infrastructure and operations. Examples of these audits and standards include:
SOC1™, (SSAE-16/ISAE-3402), SOC2™, SOC3™, ISO 27001, ISO 27018:2014 and FedRAMP.