Update your cookie preferences today to control what data we collect, how we armazenar it, and who can access it. This policy applies nesse relevante exclusão principles to protect your rights and explain data flows. It outlines the específicos data categories and the gerados profiles (perfis) you may see, so you know exactly how your information is used. We work with trusted operador and provedor partners, including gmbh entities, to provide services on your home environment while keeping exclusão decisions transparent.
We collect data from three streams: directly from you when you fill forms, automatically through cookie and logs, and from provedor and operador integrations. Data is armazenar on home servers with encryption in transit and at rest; access is limited to approved staff. We utiliza privacy controls to minimize unnecessary collection and storage of perfis and other sensitive fields.
Orçamento for data retention is defined by our policy settings. We retain data only as long as needed to deliver services and meet regulatory requirements; typically 12 to 24 months for logs, with shorter windows for perfis and gerados analytics. When you opt out, we promptly stop processing for non-essential purposes and offer data export in machine-readable formats.
You can exercise rights by contacting us; you can request access, correction, deletion, and portability. Use a simple form or email. You can adjust or withdraw cookie consent at any time via the banner, and you can limit armazenar data for esperado purposes. We respond within 30 days and provide a clear explanation of actions taken.
Security measures include TLS, encryption at rest, and strict access controls, along with regular audits. We work with trusted partners (gmbh entities) to manage risk, maintain casa data centers, and ensure exclusão of personal data. Data generated (gerados) from your activity is processed with privacy-by-design and minimalism, so your information stays protected.
What Personal Data We Collect from You Across Google Services
Review and adjust your Google activity controls today to limit data collection and tailor privacy settings to your preferences.
Categories of Data We Collect
We voluntário information you provide, including account details (name, email) and profile preferences, across nossos sistemas. This helps personalize features and ensure secure access within Google services operating in muitos áreas of the digital ecosystem. Data may be processed by Google entities and partners, including regional offices such as gmbh in Europe.
We coletar data from how you interact with services: content you create or upload (documents, photos, messages), settings you configure, and feedback you provide. Processing (processamento) covers how that data is stored, analyzed, and applied to improve relevance, performance, and safety across all our platforms. We collect data across muitas áreas of activity to keep services reliable and responsive.
We gather data generated by your activity across Google products, like Web & App Activity, location history (when ativado), search history, watch history, and áudio activity when ativado. This data spans multiple devices and browsers (browsers) and helps maintain continuity, understand user needs, and deliver relevant experiences across plataformas and apps.
Device and technical data include device type, operating system, unique identifiers, IP addresses, and logs about installed apps (instalados). We monitor toda a activity to detect fraud, protect accounts, and ensure service reliability. Logs record access times (acessou) and error events to support troubleshooting and security reviews.
Control and Export Options
Data is stored for períodos defined by policy and user settings. You can control what is collected by turning off specific toggles in Activity controls, Location History, and Ad Settings. You can export your data via portabilidade using Google Takeout, allowing you to move or share information with third parties. You have a opção to delete, restrict processing, or retain data to meet obrigaçao legal and business needs.
We protect data with encryption, access controls, and monitoring (monitoramento) to minimize risk. For guidance on your rights and how we process data, review the help resources or contact support. You can assess and adjust what you enable, determine what data is used for mediçao and analytics, and decide how long it stays stored (toda a informação). This ongoing avaliando helps ensure your preferences align with how we handle data across installed devices and across Google services.
How We Collect Data: Account Activity, Device Information, Location, and Cookies
Review and adjust your privacy settings to control what data is collected from account activity, device information, location, and cookies. We collect data to detect unauthorized access and to improve reliability. Sign-ins, session durations, and actions within the site generate detalhados logs that support gestão of access and are protected by um processo autorizado. Botão presses on the tela and other interactions are recorded with caracteres, timestamps, and device identifiers, garantindo a integridade do processo e permitindo alerts direcionados. Essas informações são disponibilizados to security teams for risk assessments and for improving the user experience. If you entrar on a new device, you may be prompted for additional verification to maintain security. This approach aligns with governamental standards and helps deliver a digital experience you can trust.
Account Activity: We log sign-ins, password changes, and attempts to access protected sections of the site. Each entry includes pontos such as timestamps, device identifiers, and action types (tipos). We use essas informações to detect unusual patterns, verify authorized access, and respond quickly to potential threats. The data are stored with restricted access and are processed under an orçamento that prioritizes fim na proteção do usuário and data minimization, ensuring apenas o essencial para a segurança e a experiência do site.
Device Information: We collect details about dispositivos used to access the site, including device type, model, operating system, browser version, language, and tela (screen) size. We also capture network information and session identifiers to map entrances to a given device. These dados support gestão de compatibilidade, detectam anomalias e ajudam a manter a confiabilidade do site, com acessos autorizados e monitorados de forma segura.
Location: We determine Location from IP addresses and device signals; GPS data is collected only when you grant explicit permission. Location helps localize content, tailor features, and strengthen fraud detection. If you opt out of location sharing, we rely on broader signals and still provide core functionality, though some localized services may ficar limitados. We may share location information in aggregated or de-identified form when necessário, respeitando quaisquer requisitos legais.
Cookies: We use cookies to maintain sessions, remember preferences, and gather analytics. Cookies include tipos such as session cookies, persistent cookies, and functional or publicidade cookies. They store identificadores, language choices, and usage patterns to support autenticação, performance, and personalized experiences. Essas informações são descritas na nossa politica de cookies, and you can ajustar o orçamento to meet suas preferências. If you prefer, you can avisar the site about your cookie choices, or usar quaisquer controles do seu navegador para bloquear cookies.
How We Use Your Data: Purposes for Google Services and Service Improvements
Use data to tailor Google services and drive improvements, while keeping privacy controls clear at every step. Esse equilíbrio entre utilidade e privacidade guia nossas práticas, atendendo à necessidade to protect user interests and complying with formal protections. We incorporamos privacy-by-design principles from the outset to implementar new capabilities while minimizing exposure of dados. We rely on anonimizado signals wherever possible to inform enhancements without exposing individuals.
Data sources include online activity across wi-fi networks and navegador. We collect dados from online interactions such as searches, video plays, app usage, and formulários you submit. When you login, we may connect activity to your account to provide a seamless experience. Queremos entender seus interesses (interesses) and estabelecer melhores fluxos, usando associação across devices to improve reliability; data are categorized using sigla labels to support analysis. We aim to usar mais insights to understand user needs and prioritize feature updates, sempre preferindo dados que sejam anonimizado e evitando a exposição de identificadores. Some datasets contêm aggregated metrics, and, in some cases, podem conter apenas non-identifying information, with the note that 'contenham' only non-identifiers.
Data Handling and Improvements
armazenamos dados in secure servers with role-based access controls and strict retention rules. We store detentores' data in nacionais centers wherever feasible, and only keep what is necessary to support service improvements and compliance. When data are linked to login accounts, we connect activity to the detentores to offer a personalized experience, while preserving anonimidade where possible. We manage envio of updates and diagnostics under protections that limit exposure across borders, usando padrões de segurança e cumprindo as normas aplicáveis.
We provide clear controls so you can review, delete, or restrict data. Queremos que você entenda o que é armazenado e como é usado; você pode ajustar configurações relacionadas a atividade online, personalização de anúncios e compartilhamento de dados. sigla internas ajudam a classificar informações, e a associação entre serviços fica dentro de limites necessários (nesta). Se precisar de ajuda, entre em contato; seu feedback ajuda a melhorar a experiência mantendo a segurança e a conformidade.
When We Share Data: With Partners, Vendors, and Legal Authorities
We share data only under written agreements that define purpose, scope, and safeguards. We disclose the minimum data necessary to deliver services, meet legal obligations, and investigate incidents, while keeping an auditable trail of each disclosure. Our data-sharing matrix lists data categories, recipients, purposes, retention timelines, and security controls to show exactly who can access what and why. We limit difusão of data and ensure exibição is restricted to what is needed for operation and compliance. We continuously monitor estatística and maintain clear governance to protect your information.
With Partners and Vendors
Access is granted on a least-privilege basis. Each user holds unique credentials and MFA, and acessos are logged for detecta and audit purposes. We require confirmação from our privacy team before any additional sharing and a decisão based on necessity and proportionality (decidir; qualquer sharing beyond the contract must be justified). We share apenas o que está indicado for the task and as descrito nos tópicos of the agreement. Data is protected by criptografia in transit and at rest, and partners must implement portas and difusão controls to prevent unnecessary exposure. If alguém requests data, we verify the pedido and ensure the data verdadeiramente refers to the ultima necessidade; the team deve documentar the purpose and the data elements involved (número, contact details, etc.). We require that parceiros estejam competentes to handle dados, conduct avaliacao risk, and enable omisso actions if anomalies are detected. Any access by alguém outside our organization must be strictly controlled and promptly revoked when the work pautado is completed.
Legal Authorities and Compliance
When we must disclose data to legal authorities, we first verify the autoridade and the scope of the pedido. We disclose the minimum necessary and consider redaction or de-identificação where feasible. We document o pedido, the número de records, and the art.º references that authorize the action, and we provide a concise resumo to relevant internal and external stakeholders. Our processing remains protected by criptografia, and we limit difusão to the entities with a legitimate right to access. We follow a competent governance process to assess requests, decide on disclosures, and maintain an audit trail. If the request is unclear, we seek confirmação and, where possible, propose alternatives that achieve the objetivo without exposing more data than necessary. qualquer resposta is handled promptly and with respect to as regras deste policy, ensuring that cada ação aligns with legal requirements and protects authorízão and user trust. Portas are closed after completion, and disclosures are restricted to the defined topics and purpose.
Security Measures We Implement: Encryption, Access Controls, and Incident Response
Enable encryption by default for data at rest and in transit. Use AES-256 for stored data and TLS 1.2+ with forward secrecy for all network traffic. Protect backups with the same standards, and store keys in a dedicated key management service or hardware security module. Where possible, use uma única key per data class; isto ensures necessários protections across data categories.
Enforce least-privilege access, implement RBAC, and require MFA for all access to systems handling personal data. Separate production and non-production credentials; perform periodic reviews every 90 dias as part of nossa frequência. Apply nossas políticas across equipes, inclusive logging and monitoring to seguir unauthorized attempts. If tiver exceptions arise, comunique através do canal de segurança e obtenha aprovações. Desta forma, esta abordagem está alinhada com futuras publicidade e com outras comunicações, mantendo a escolha de controles clara e consistente.
Incident response uses etapas: detecção, contenção, erradicação, recuperação, e comunicação. We run 24/7 monitoring with SIEM alerts and runbooks that assign responsabilidades. Teams will seguir the defined procedures to ensure consistent handling. Maintain identificação records for incidents and perform post-incident reviews to tighten controls. Isto supports melhoria across áreas de segurança and ensures comunicação to stakeholders is aplicável and, when needed, public disclosure (publicidade) follows approved timelines, garantizando transparency and swift containment and remediation of incidentes. Tratamentos de dados are limited to what é necessário and usados data are minimized; eventuais data sharing are guarded under opor constraints. Garantindo privacy and security across operations.
Your Privacy Rights: Access, Correction, Deletion, Export, and Restriction
Request your data now by submitting a formal request via your navegador or gmail to review, edit, delete, export, or restrict processing. We respond within 30 days; complex cases may extend to 90 days with a brief justification.
To locate localização of dados associados to you, include your cadastro ID and specify the data categories and date range. If you need help, ask for ajuda from our privacy team; we service interesses across many brasil-based services and associadas to gemini and other providers.
We give you controle over your records. All requests follow formas formais and respect applicable rights. We will honor restrictions in situtações where processing should be limited while a review is ongoing.
The process is designed to facilta editing, deletion, and export, with clear steps and confirmations. You’ll see status updates in your account dashboard and receive notices via gmail when actions complete; this approach keeps cadastro data organized and easy to manage, like a pizza sliced into clear categories.
Right |
¿Qué cubre? |
How to exercise |
Typical response |
|---|---|---|---|
Access |
Copy of your personal data and associated records (relacionados) stored in our systems, including localization (localização) and activity traces (gráfico). |
Submit via navegador or gmail, specify cadastro or user ID, and name data categories. Mention associadas to ensure a full view. |
We provide a downloadable copy in common formats (CSV, JSON, PDF) within 30 days; you can request a basic summary graph (gráfico) if needed. |
Correction |
Incorrect or outdated data (including contact details and preferences) that you want updated or edited (editar). |
Send exact corrections, attach supporting evidence, and reference the relevant cadastro or account section. |
We update records within 30 days; we notify you of changes and provide a fresh copy if you requested export. |
Deletion |
Personal data you request to remove, subject to applicable legal requirements (fornecimento) and retention rules. |
Submit scope and timeframe (which data or services). For sensitive data, specify why deletion is requested. |
Data is removed or de-identified within 30 days; exceptions may apply if legal obligations exist. |
Export |
Exported copies of your data for transfer to another service or for your records (disponibilizados). |
Choose categories and formats (CSV/JSON); confirm delivery channel (secure link via gmail or your account). |
We deliver a secure download and provide a brief data map (pizza of categories) for easy review. |
Restricción |
Limit processing while a dispute or verification occurs, or while you contest accuracy or legality (situações). |
Submit a restriction request; specify data segments to cap processing and user-facing visibility. |
Processing is restricted in our systems; you’ll see the restricted status in your dashboard until the issue is resolved. |
Managing Privacy Settings: Step-by-Step Controls in Your Google Account
Sign in to your Google Account, open Data & privacy, and perform an opt-out to reduce the data armazenados and limit how services use your information. isto starts your control matter right away.
- Open Data & privacy > Activity controls. If ativado, switch Web & App Activity and Location History to off, and set Auto-delete data older than 18 months to minimize what remains armazenados.
- Review Ads Personalization. Use the option to opt-out of personalized ads; if gostar of tighter control, set Ad Personalization to off and confirm the change with the opção you prefer.
- Check third-party access. In Security > Apps with account access, review which oferecidos apps have permissions; perform a retirada of access for any you no longer recognize, and use the Excluir or remove options (excluídas) for permissions you don’t need.
- Audit data across products. Examine which dados are tratados by each service, disable unnecessary data collection, and adjust settings to limit what is armazenado. This includes reviewing activity logs, history, and display (exibição) preferences that isto affect how your data is shown to you.
- Strengthen security with criptografia and verification. Ensure data in transit and at rest are protected by criptografia, enable 2-step verification (instalar) where available, and keep recovery options up to date to maintain confiança with your account.
- Align with legislação and retention rules. Review regras for data retention and compliance with legislações applicable in your region, choosing conservative retention settings and requesting data removals when appropriate (retirada). If you need a fresh start, use the nova unidade of privacy controls to apply these choices consistently across products.
- Review display and data containment. Periodically check isto to ensure your preferences are reflected wherever Google services exibições data; use the contain (contenham) principle to keep only what you explicitly允许.
Ongoing privacy improvements
- Set a quarterly check-in to verify at least one major control has not changed from your preferred state.
- Use trusted experts (especialistas) and guidance to tailor settings to your needs, then document any changes you make for future reviews.
