Difference between revisions of "Google Cloud"

From LIMSWiki
Jump to navigationJump to search
(MSS)
m (Text replacement - "Persistent Systems Ltd." to "Persistent Systems Ltd.")
 
(7 intermediate revisions by the same user not shown)
Line 21: Line 21:
| products        = [[Infrastructure as a service|IaaS]], [[Platform as a service|PaaS]], [[Database as a service|DBaaS]], [[Desktop virtualization#Desktop as a service|DaaS]]
| products        = [[Infrastructure as a service|IaaS]], [[Platform as a service|PaaS]], [[Database as a service|DBaaS]], [[Desktop virtualization#Desktop as a service|DaaS]]
| services        =  
| services        =  
| revenue          = $3.83 billion (2020, Q4)<ref name="GagliordiAlpha21">{{cite web |url=https://www.zdnet.com/article/alphabet-beats-q4-estimates-google-cloud-revenue-climbs/ |title=Alphabet beats Q4 estimates, Google Cloud revenue climbs |author=Gagliordi, N. |work=ZDNet |date=02 February 2021 |accessdate=25 April 2021}}</ref>
| revenue          = $7.4 billion (2023, Q1)<ref name="MillerGoogle23">{{cite web |url=https://techcrunch.com/2023/04/25/google-cloud-turns-profit-for-the-first-time/ |title=Google Cloud turns profit for the first time |author=Miller, R. |work=TechCrunch |date=25 April 2023 |accessdate=02 August 2023}}</ref>
| operating_income =  
| operating_income =  
| net_income      =  
| net_income      =  
Line 37: Line 37:
}}
}}


'''Google Cloud''' is a Google-driven suite of public, private, hybrid, and multicloud computing services that runs on the same infrastructure that Google uses internally for its end-user products.<ref name="GoogleCloudWhy">{{cite web |url=https://cloud.google.com/why-google-cloud |title=Why Google Cloud |publisher=Google |accessdate=25 April 2021}}</ref> Google Cloud boasts data centers in 25 regions, 76 zones, and 144 network edge locations.<ref name="GoogleCloudLocs">{{cite web |url=https://cloud.google.com/about/locations |title=Cloud locations |publisher=Google Cloud |accessdate=25 April 2021}}</ref> More than 100 different products and services are associated with Google Cloud, representing elastic computing, networking, content delivery, data storage, database management, security management, enterprise management, [[data analysis]], media management, container management, developer support, scientific computing, [[internet of things]], and [[artificial intelligence]].<ref name="GoogleCloudProds">{{cite web |url=https://cloud.google.com/products |title=Google Cloud Products |publisher=Google |accessdate=25 April 2021}}</ref>
'''Google Cloud''' is a Google-driven suite of public, private, hybrid, and multicloud computing services that runs on the same infrastructure that Google uses internally for its end-user products.<ref name="GoogleCloudWhy">{{cite web |url=https://cloud.google.com/why-google-cloud |title=Why Google Cloud |publisher=Google |accessdate=02 August 2023}}</ref> Google Cloud boasts data centers in 37 regions, 112 zones, and 187 network edge locations.<ref name="GoogleCloudLocs">{{cite web |url=https://cloud.google.com/about/locations |title=Cloud locations |publisher=Google Cloud |accessdate=02 August 2023}}</ref> More than 100 different products and services are associated with Google Cloud, representing elastic computing, networking, content delivery, data storage, database management, security management, enterprise management, [[data analysis]], media management, container management, developer support, scientific computing, [[internet of things]], and [[artificial intelligence]].<ref name="GoogleCloudProds">{{cite web |url=https://cloud.google.com/products |title=Google Cloud Products |publisher=Google |accessdate=02 August 2023}}</ref>




==Provider research==
==Provider research==
This section uses public information to provide some answers to the 18 questions posed in Chapter 5 of the wiki-based guide ''[[LII:Choosing and Implementing a Cloud-based Service for your Laboratory|Choosing and Implementing a Cloud-based Service for your Laboratory]]''. In some cases, public information could not be found, and a recommendation to further discuss the question with the cloud service provider (CSP) is made.
This section uses public information to provide some answers to the 18 questions posed in Chapter 6 of the wiki-based guide ''[[LII:Choosing and Implementing a Cloud-based Service for Your Laboratory|Choosing and Implementing a Cloud-based Service for Your Laboratory]]''. In some cases, public information could not be found, and a recommendation to further discuss the question with the cloud service provider (CSP) is made.




1. '''What experience do you have working with laboratory customers in our specific industry?'''
1. '''What experience do you have working with laboratory customers in our specific industry?'''


Examples of [[Laboratory|labs]] that have worked with Google Cloud at some point include the Department of Energy's National Labs<ref name="NyczepirDOE20">{{cite web |url=https://www.fedscoop.com/doe-google-cloud-productivity-tools/ |title=DOE research facilities move to Google Cloud |author=Nyczepir, D. |work=FedScoop |date=15 October 2020 |accessdate=15 April 2021}}</ref>, Hologic<ref name="FordHologic21">{{cite web |url=https://www.mddionline.com/digital-health/hologic-reaching-google-cloud-new-collaboration |title=Hologic is Reaching for the (Google) Cloud with New Collaboration |author=Ford, O. |work=Medical Device and Diagnostic Industry |date=02 February 2021 |accessdate=15 April 2021}}</ref>, IDEXX Laboratories<ref name="GoogleIDEXX">{{cite web |url=https://cloud.google.com/customers/idexx-laboratories |title=IDEXX Laboratories: Using big data to be the top dog in animal diagnostics |publisher=Google Cloud |accessdate=15 April 2021}}</ref>, Spectra Laboratories<ref name="ZoomInfoWash">{{cite web |url=https://www.zoominfo.com/c/spectra-laboratories-inc/112181570 |title=Spectra Laboratories |work=ZoomInfo |accessdate=15 April 2021}}</ref>, and Washington Laboratories.<ref name="ZoomInfoWash">{{cite web |url=https://www.zoominfo.com/c/washington-laboratories-ltd/41451684 |title=Washington Laboratories |work=ZoomInfo |accessdate=15 April 2021}}</ref> It's also worth noting that some laboratory information management system (LIMS) developers have offered their solution on Google Cloud over the years, including [[GoMeyra Corporation]]<ref name="GoMeyraPolicies">{{cite web |url=https://www.gomeyra.com/policies/ |title=GoMeyra Policies |publisher=GoMeyra Corporation |accessdate=15 April 2021}}</ref>, [[Online LIMS Canada Limited]]<ref name="ZoomInfoOnline">{{cite web |url=https://www.zoominfo.com/c/online-lims-canada-limited/84935207 |title=Online LIMS Canada |work=ZoomInfo |accessdate=15 April 2021}}</ref>, and [[Persistent Systems Ltd.]]<ref name="PersistentGoogle">{{cite web |url=https://www.persistent.com/partner-ecosystem/google-cloud-platform/ |title=Accelerating your journey to the cloud with Google Cloud Platform |publisher=Persistent Systems Ltd |accessdate=15 April 2021}}</ref> A Google Cloud representative is likely to be able to supply more examples of laboratories and laboratory informatics developers that use or have used Google Cloud.
Examples of [[Laboratory|labs]] that have worked with Google Cloud at some point include the Department of Energy's National Labs<ref name="NyczepirDOE20">{{cite web |url=https://www.fedscoop.com/doe-google-cloud-productivity-tools/ |title=DOE research facilities move to Google Cloud |author=Nyczepir, D. |work=FedScoop |date=15 October 2020 |accessdate=02 August 2023}}</ref>, Hologic<ref name="FordHologic21">{{cite web |url=https://www.mddionline.com/digital-health/hologic-reaching-google-cloud-new-collaboration |title=Hologic is Reaching for the (Google) Cloud with New Collaboration |author=Ford, O. |work=Medical Device and Diagnostic Industry |date=02 February 2021 |accessdate=02 August 2023}}</ref>, IDEXX Laboratories<ref name="GoogleIDEXX">{{cite web |url=https://cloud.google.com/customers/idexx-laboratories |title=IDEXX Laboratories: Using big data to be the top dog in animal diagnostics |publisher=Google Cloud |accessdate=02 August 2023}}</ref>, Spectra Laboratories<ref name="ZoomInfoSpectra">{{cite web |url=https://www.zoominfo.com/c/spectra-laboratories-inc/112181570 |title=Spectra Laboratories |work=ZoomInfo |accessdate=02 August 2023}}</ref>, and Washington Laboratories.<ref name="ZoomInfoWash">{{cite web |url=https://www.zoominfo.com/c/washington-laboratories-ltd/41451684 |title=Washington Laboratories |work=ZoomInfo |accessdate=02 August 2023}}</ref> It's also worth noting that some laboratory information management system (LIMS) developers have offered their solution on Google Cloud over the years, including [[Vendor:GoMeyra Corporation|GoMeyra Corporation]]<ref name="GoMeyraPolicies">{{cite web |url=https://www.gomeyra.com/policies/ |archiveurl=https://web.archive.org/web/20210419034125/https://www.gomeyra.com/policies/ |title=GoMeyra Policies |publisher=GoMeyra Corporation |archivedate=19 April 2021 |accessdate=02 August 2023}}</ref>, [[Vendor:Online LIMS Canada Limited|Online LIMS Canada Limited]]<ref name="ZoomInfoOnline">{{cite web |url=https://www.zoominfo.com/c/online-lims-canada-limited/84935207 |title=Online LIMS Canada |work=ZoomInfo |accessdate=02 August 2023}}</ref>, and [[Vendor:Persistent Systems Ltd.|Persistent Systems Ltd.]]<ref name="PersistentGoogle">{{cite web |url=https://www.persistent.com/partner-ecosystem/google/ |title=Accelerate your digital transformation journey with Google |publisher=Persistent Systems Ltd |accessdate=02 August 2023}}</ref> A Google Cloud representative is likely to be able to supply more examples of laboratories and laboratory informatics developers that use or have used Google Cloud.




2. '''Can your solution readily integrate with our other systems and business processes, making it easier for our end users to perform their tasks?'''
2. '''Can your solution readily integrate with our other systems and business processes, making it easier for our end users to perform their tasks?'''


It will ultimately be up to your organization to get an answer tailored to your systems and business processes. However, this much can be said about Google Cloud integrations. Google provides [https://cloud.google.com/marketplace/docs/partners/integrated-saas/technical-integration-setup documentation] about how to integrate your applications with its backend and frontend, including its APIs. Additionally, Google Cloud discusses at length the concept of [https://cloud.google.com/learn/what-is-data-integration data integration], including its [https://cloud.google.com/data-fusion/ Cloud Data Fusion] (CDF) offering for hybrid and multicloud integration. The CDF library of connectors and transformations, along with its "end-to-end data lineage, integration metadata, and cloud-native security and data protection services," helps customers keep data integrated no matter its location.<ref name="GoogleCDF">{{cite web |url=https://cloud.google.com/data-fusion/ |title=Cloud Data Fusion |publisher=Google Cloud |accessdate=15 April 2021}}</ref>
It will ultimately be up to your organization to get an answer tailored to your systems and business processes. However, this much can be said about Google Cloud integrations. Google provides [https://cloud.google.com/marketplace/docs/partners/integrated-saas/technical-integration-setup documentation] about how to integrate your applications with its backend and frontend, including its APIs. Additionally, Google Cloud discusses at length the concept of [https://cloud.google.com/learn/what-is-data-integration data integration], including its [https://cloud.google.com/data-fusion/ Cloud Data Fusion] (CDF) offering for hybrid and multicloud integration. The CDF library of connectors and transformations, along with its "end-to-end data lineage, integration metadata, and cloud-native security and data protection services," helps customers keep data integrated no matter its location.<ref name="GoogleCDF">{{cite web |url=https://cloud.google.com/data-fusion/ |title=Cloud Data Fusion |publisher=Google Cloud |accessdate=02 August 2023}}</ref>




Line 66: Line 66:
5. '''Where are your servers located, and how is data securely transferred to and from those servers?'''
5. '''Where are your servers located, and how is data securely transferred to and from those servers?'''


Google Cloud has 25 regions it operates in<ref name="GoogleCloudLocs" />, with each region having at least three zones<ref name="GoogleRegions">{{cite web |url=https://cloud.google.com/compute/docs/regions-zones |title=Regions and zones |work=Compute Engine Documentation |publisher=Google Cloud |accessdate=15 April 2021}}</ref>, with more three-zone regions planned.<ref name="GoogleCloudLocs" /> Google Cloud uses its content delivery network Cloud CDN, which "brings consistently great web and video experiences to users anywhere, provides privacy and data security, and activates with a single click for Cloud Load Balancing users."<ref name="GoogleCloudCDN">{{cite web |url=https://cloud.google.com/cdn |title=Cloud CDN |publisher=Google Cloud |accessdate=15 April 2021}}</ref> When moving data to and from on-premises and Google Cloud systems, multiple [https://cloud.google.com/products/data-transfer transfer options] exist, including normal online transfer, a full-scale transfer service, transfer appliances, and schedules SaaS data transfers.<ref name="GoogleCloudDataTrans">{{cite web |url=https://cloud.google.com/products/data-transfer |title=Cloud Data Transfer |publisher=Google Cloud |accessdate=15 April 2021}}</ref> Data in motion is encrypted following a strict [https://cloud.google.com/security/encryption-in-transit company policy]. As for data localization and residency requirements, Google Cloud [https://cloud.google.com/blog/products/identity-security/meet-data-residency-requirements-with-google-cloud gives customers] many controls, including organization policies, Cloud IAM configurations, and VPC service controls.
Google Cloud has 37 regions it operates in<ref name="GoogleCloudLocs" />, with each region having at least three zones<ref name="GoogleRegionsDoc">{{cite web |url=https://cloud.google.com/compute/docs/regions-zones |title=Regions and zones |work=Compute Engine Documentation |publisher=Google Cloud |accessdate=02 August 2023}}</ref>, with more three-zone regions planned.<ref name="GoogleCloudLocs" /> Google Cloud uses its content delivery network Cloud CDN, which "gives you the same world-class infrastructure to accelerate and secure mission critical web experiences at a global scale."<ref name="GoogleCloudCDN">{{cite web |url=https://cloud.google.com/cdn |title=Cloud CDN |publisher=Google Cloud |accessdate=02 August 2023}}</ref> When moving data to and from on-premises and Google Cloud systems, multiple [https://cloud.google.com/storage-transfer-service transfer options] exist, including normal online transfer, a full-scale transfer service, transfer appliances, and scheduled SaaS data transfers.<ref name="GoogleCloudDataTrans">{{cite web |url=https://cloud.google.com/storage-transfer-service |title=Storage Transfer Service |publisher=Google Cloud |accessdate=02 August 2023}}</ref> Data in motion is encrypted following a strict [https://cloud.google.com/docs/security/encryption-in-transit company policy]. As for data localization and residency requirements, Google Cloud [https://cloud.google.com/blog/products/identity-security/meet-data-residency-requirements-with-google-cloud gives customers] many controls, including organization policies, Cloud IAM configurations, and VPC service controls.




6. '''Who will have access to our data (including subcontractors), and what credentials, certifications, and compliance training do they have?'''
6. '''Who will have access to our data (including subcontractors), and what credentials, certifications, and compliance training do they have?'''


In its security whitepaper, Google states the following<ref name="GoogleSecurityWhite">{{cite web |url=https://cloud.google.com/security/overview/whitepaper |title=Google security whitepaper |publisher=Google Cloud |date=January 2019 |accessdate=15 April 2021}}</ref>:  
In its security whitepaper, Google states the following<ref name="GoogleSecurityWhite">{{cite web |url=https://cloud.google.com/docs/security/overview/whitepaper |title=Google security overview |publisher=Google Cloud |date=May 2022 |accessdate=02 August 2023}}</ref>:  


<blockquote>Google data center physical security features a layered security model, including safeguards like custom-designed electronic access cards, alarms, vehicle access barriers, perimeter fencing, metal detectors, and biometrics, and the data center floor features laser beam intrusion detection. Our data centers are monitored 24/7 by high-resolution interior and exterior cameras that can detect and track intruders. Access logs, activity records, and camera footage are available in case an incident occurs. Data centers are also routinely patrolled by experienced security guards who have undergone rigorous background checks and training. As you get closer to the data center floor, security measures also increase. Access to the data center floor is only possible via a security corridor which implements multi-factor access control using security badges and biometrics. Only approved employees with specific roles may enter. Less than one percent of Googlers will ever set foot in one of our data centers.</blockquote>
<blockquote>The physical security in Google data centers is a layered security model. Physical security includes safeguards like custom-designed electronic access cards, alarms, vehicle access barriers, perimeter fencing, metal detectors, and biometrics. In addition, to detect and track intruders, we use security measures such as laser beam intrusion detection and 24/7 monitoring by high-resolution interior and exterior cameras. Access logs, activity records, and camera footage are available in case an incident occurs. Experienced security guards, who have undergone rigorous background checks and training, routinely patrol our data centers. As you get closer to the data center floor, security measures also increase. Access to the data center floor is only possible through a security corridor that implements multi-factor access control using security badges and biometrics. Only approved employees with specific roles may enter. Less than one percent of Google employees will ever set foot in one of our data centers.</blockquote>


For information about specific certifications and compliance training, discuss this with a Google Cloud representative.
For information about specific certifications and compliance training, discuss this with a Google Cloud representative.
Line 85: Line 85:
8. '''How segregated is our cloud data from another customer's, i.e., will lapses of security of another customer's cloud affect our cloud? (It typically won't, but asking the question will hopefully prompt the provider to better explain how your data is segregated.)'''
8. '''How segregated is our cloud data from another customer's, i.e., will lapses of security of another customer's cloud affect our cloud? (It typically won't, but asking the question will hopefully prompt the provider to better explain how your data is segregated.)'''


Unlike other cloud providers, it's not entirely clear what Google Cloud's stance is on physical separation. The only information to be found was a sentence in their security whitepaper<ref name="GoogleSecurityWhite" />: "To keep data private and secure, Google logically isolates each customer's data from that of other customers and users, even when it's stored on the same physical server." Presumably the type of data you have will determine which servers you should use, based upon those servers compliance ratings. You'll have to have a discussion with a Google Cloud representative to learn more about their position on physical separation of data.
Unlike other cloud providers, it's not entirely clear what Google Cloud's stance is on physical separation. The only information to be found was a sentence in their security whitepaper<ref name="GoogleSecurityWhite" />: "Our infrastructure is designed to logically isolate each customer's data from the data of other customers and users, even when it's stored on the same physical server." Presumably the type of data you have will determine which servers you should use, based upon those servers compliance ratings. You'll have to have a discussion with a Google Cloud representative to learn more about their position on physical separation of data.


Tenant isolation is addressed by Google Cloud under the scope of Kubernetes [https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview both here] and [https://cloud.google.com/kubernetes-engine/docs/best-practices/enterprise-multitenancy here]. However, like many aspects of security, configuration and best practices are a shared responsibility. Additional details about multi-tenancy and related security on Google Cloud can be found under the "Secure Service Deployment" section of their ''[https://cloud.google.com/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf Google Infrastructure Security Design Overview]'' document. Consult with a representative to learn more.
Tenant isolation is addressed by Google Cloud under the scope of Kubernetes [https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview both here] and [https://cloud.google.com/kubernetes-engine/docs/best-practices/enterprise-multitenancy here]. However, like many aspects of security, configuration and best practices are a shared responsibility. Additional details about multi-tenancy and related security on Google Cloud can be found under the "Secure Service Deployment" section of their ''[https://cloud.google.com/static/docs/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf Google Infrastructure Security Design Overview]'' document. Consult with a representative to learn more.




Line 95: Line 95:


* [https://cloud.google.com/security/showcase Google cloud security showcase]
* [https://cloud.google.com/security/showcase Google cloud security showcase]
* [https://cloud.google.com/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf Google infrastructure security design overview]
* [https://cloud.google.com/static/docs/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf Google infrastructure security design overview]
* [https://cloud.google.com/security/overview/whitepaper Google security whitepaper]
* [https://cloud.google.com/docs/security/overview/whitepaper Google security whitepaper]
* [https://cloud.google.com/security/compliance/compliance-reports-manager Google SOC 2 documents]
* [https://cloud.google.com/security/compliance/compliance-reports-manager Google SOC 2 documents]


Line 106: Line 106:
Google Cloud has information scattered around in its documentation. Most notable is this passage from its security whitepaper<ref name="GoogleSecurityWhite" />:
Google Cloud has information scattered around in its documentation. Most notable is this passage from its security whitepaper<ref name="GoogleSecurityWhite" />:


<blockquote>Google administrates a vulnerability management process that actively scans for security threats using a combination of commercially available and purpose-built in-house tools, intensive automated and manual penetration efforts, quality assurance processes, software security reviews and external audits. The vulnerability management team is responsible for tracking and following up on vulnerabilities. Once a vulnerability requiring remediation has been identified, it is logged, prioritized according to severity, and assigned an owner. The vulnerability management team tracks such issues and follows up frequently until they can verify that the issues have been remediated.</blockquote>
<blockquote>Our dedicated security team includes some of the world's foremost experts in information security, application security, cryptography, and network security. This team maintains our defense systems, develops security review processes, builds security infrastructure, and implements our security policies. The team actively scans for security threats using commercial and custom tools. The team also conducts penetration tests and performs quality assurance and security reviews.</blockquote>


The company also mentions that they "conduct Red Team exercises to measure and improve the effectiveness of our detection and response mechanisms."<ref name="GoogleInfra17">{{cite web |url=https://cloud.google.com/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf |format=PDF |title=Google Infrastructure Security Design Overview |publisher=Google Cloud |date=January 2017 |accessdate=16 April 2021}}</ref>
The company also mentions that they conduct "intensive automated and manual penetration efforts, including extensive Red Team exercises."<ref name="GoogleSecurityWhite" />


There are other pieces of information related to non-Google Cloud personnel testing the platform. Under its [https://cloud.google.com/terms/data-processing-terms Data Processing and Security Terms], customers have some audit rights, though there are limited to those affected by GDPR or Model Contract Clauses. Otherwise, the customer must rely on third-party audit results.<ref name="GoogleDataProc20">{{cite web |url=https://cloud.google.com/terms/data-processing-terms |title=Data Processing and Security Terms (Customers) |publisher=Google Cloud |date=19 August 2021 |accessdate=16 April 2021}}</ref>
There are other pieces of information related to non-Google Cloud personnel testing the platform. Under its [https://cloud.google.com/terms/data-processing-addendum Cloud Data Processing Addendum], customers have some audit rights, though there are limited to those affected by GDPR or Model Contract Clauses. Otherwise, the customer must rely on third-party audit results.<ref name="GoogleDataProc20">{{cite web |url=https://cloud.google.com/terms/data-processing-addendum |title=Cloud Data Processing Addendum (Customers) |publisher=Google Cloud |date=20 September 2022 |accessdate=02 August 2023}}</ref>




Line 117: Line 117:
''Audits'': Google Cloud has this to say about security audits:
''Audits'': Google Cloud has this to say about security audits:


* "We vet component vendors we work with and choose components with care, while working with vendors to audit and validate the security properties provided by the components."<ref name="GoogleInfra17" />
* "We vet the component vendors that we work with and choose components with care. We work with vendors to audit and validate the security properties that are provided by the components."<ref name="GoogleInfra17">{{cite web |url=https://cloud.google.com/static/docs/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf |format=PDF |title=Google Infrastructure Security Design Overview |publisher=Google Cloud |date=June 2023 |accessdate=02 August 2023}}</ref>
* "Google has a dedicated internal audit team that reviews compliance with security laws and regulations around the world. As new auditing standards are created, the internal audit team determines what controls, processes, and systems are needed to meet them. This team facilitates and supports independent audits and assessments by third parties."<ref name="GoogleSecurityWhite" />
* "We have a dedicated internal audit team that reviews our products' compliance with security laws and regulations around the world. As new auditing standards are created and existing standards are updated, the internal audit team determines what controls, processes, and systems are needed in order to help meet them. This team supports independent audits and assessments by third parties."<ref name="GoogleSecurityWhite" />
* "Googler access is monitored and audited by our dedicated security, privacy, and internal audit teams, and we provide audit logs to customers through Access Transparency for GCP."<ref name="GoogleSecurityWhite" />
* "Our dedicated security teams, privacy teams, and internal audit teams monitor and audit employee access, and we provide audit logs to you through Access Transparency for Google Cloud."<ref name="GoogleSecurityWhite" />


''Intrusion detection and reporting'': Google Cloud provides Security Command Center to its customers for intrusion detection and reporting.<ref name="GoogleSCC">{{cite web |url=https://cloud.google.com/security-command-center/ |title=Security Command Center |publisher=Google Cloud |accessdate=16 April 2021}}</ref> As for its own intrusion detection, Google Cloud discusses this in its ''[https://cloud.google.com/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf Google Infrastructure Security Design Overview]'' document<ref name="GoogleInfra17" />:
''Intrusion detection and reporting'': Google Cloud provides Security Command Center to its customers for intrusion detection and reporting.<ref name="GoogleSCC">{{cite web |url=https://cloud.google.com/security-command-center/ |title=Security Command Center |publisher=Google Cloud |accessdate=02 August 2023}}</ref> As for its own intrusion detection, Google Cloud discusses this in its ''[https://cloud.google.com/static/docs/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf Google Infrastructure Security Design Overview]'' document<ref name="GoogleInfra17" />:


<blockquote>Google has sophisticated data processing pipelines which integrate host-based signals on individual devices, network-based signals from various monitoring points in the infrastructure, and signals from infrastructure services. Rules and machine intelligence built on top of these pipelines give operational security engineers warnings of possible incidents. Our investigation and incident response teams triage, investigate, and respond to these potential incidents 24 hours a day, 365 days a year.</blockquote>
<blockquote>We use sophisticated data processing pipelines to integrate host-based signals on individual devices, network-based signals from various monitoring points in the infrastructure, and signals from infrastructure services. Rules and machine intelligence built on top of these pipelines give operational security engineers warnings of possible incidents. Our investigation and incident-response teams triage, investigate, and respond to these potential incidents 24 hours a day, 365 days a year.</blockquote>




Line 131: Line 131:


* Google employee access to end user information<ref name="GoogleSecurityWhite" />
* Google employee access to end user information<ref name="GoogleSecurityWhite" />
* speech-to-text information and various other types of information (if opted in to [https://cloud.google.com/talent-solution/data-logging-terms data logging program])<ref name="GoogleSpeechToData">{{cite web |url=https://cloud.google.com/speech-to-text/docs/data-logging |title=Data logging |work=Cloud Speech-to-Text |publisher=Google Cloud |accessdate=16 April 2021}}</ref>
* speech-to-text information and various other types of information (if opted in to [https://cloud.google.com/talent-solution/data-logging-terms data logging program])<ref name="GoogleSpeechToData">{{cite web |url=https://cloud.google.com/speech-to-text/docs/data-logging |title=Data logging |work=Cloud Speech-to-Text |publisher=Google Cloud |date=02 August 2023 |accessdate=02 August 2023}}</ref>


However, it's not clear what other data logging they may conduct and act upon related to your data. Talk to a representative to determine this.
However, it's not clear what other data logging they may conduct and act upon related to your data. Talk to a representative to determine this.
Line 143: Line 143:
14. '''For HIPAA-eligible data (e-PHI) we may have, will you sign a business associate agreement?'''
14. '''For HIPAA-eligible data (e-PHI) we may have, will you sign a business associate agreement?'''


Yes, AWS will sign a business associate agreement.<ref name="GoogleHIPAA">{{cite web |url=https://cloud.google.com/security/compliance/hipaa |title=HIPAA Compliance on Google Cloud Platform |publisher=Google Cloud |accessdate=16 April 2021}}</ref> Consult their [https://cloud.google.com/security/compliance/hipaa HIPAA compliance page] for more details on their approach to [[HIPAA]] compliance.
Yes, AWS will sign a business associate agreement.<ref name="GoogleHIPAA">{{cite web |url=https://cloud.google.com/security/compliance/hipaa |title=HIPAA Compliance on Google Cloud |publisher=Google Cloud |date=27 July 2023 |accessdate=02 August 2023}}</ref> Consult their [https://cloud.google.com/security/compliance/hipaa HIPAA compliance page] for more details on their approach to [[HIPAA]] compliance.




Line 150: Line 150:
Google Cloud makes several statements about customer data in its platform terms:
Google Cloud makes several statements about customer data in its platform terms:


* "If the Agreement is terminated, then (a) all rights and access to the Services will terminate (including access to Customer Data, if applicable), unless otherwise described in this Agreement ..."<ref name="GoogleToS21">{{cite web |url=https://cloud.google.com/terms |title=Google Cloud Platform Terms of Service |publisher=Google Cloud |date=01 April 2021 |accessdate=16 April 2021}}</ref>
* "If the Agreement is terminated, then (a) all rights and access to the Services will terminate (including access to Customer Data, if applicable), unless otherwise described in this Agreement ..."<ref name="GoogleToS21">{{cite web |url=https://cloud.google.com/terms |title=Google Cloud Platform Terms of Service |publisher=Google Cloud |date=12 July 2023 |accessdate=02 August 2023}}</ref>
* "On expiry of the Term, Customer instructs Google to delete all Customer Data (including existing copies) from Google’s systems in accordance with applicable law. Google will, after a recovery period of up to 30 days following such expiry, comply with this instruction as soon as reasonably practicable and within a maximum period of 180 days, unless European or National Law requires storage. Without prejudice to Section 9.1 (Access; Rectification; Restricted Processing; Portability), Customer is responsible for exporting, before the Term expires, any Customer Data it wishes to retain."<ref name="GoogleDataProc20" />
* "If Customer wishes to retain any Customer Data after the end of the Term, it may instruct Google in accordance with Section 9.1 (Access; Rectification; Restricted Processing; Portability) to return that data during the Term. Subject to Section 6.3 (Deferred Deletion Instruction), Customer instructs Google to delete all remaining Customer Data (including existing copies) from Google’s systems at the end of the Term in accordance with applicable law. After a recovery period of up to 30 days from that date, Google will comply with this Instruction as soon as reasonably practicable and within a maximum period of 180 days, unless European Law requires storage."<ref name="GoogleDataProc20" />




16. '''What happens to our data should you go out of business or suffer a catastrophic event?'''
16. '''What happens to our data should you go out of business or suffer a catastrophic event?'''


It's not publicly clear how Google Cloud would handle your data should they go out of business, nor do they mention much about catastrophic loss on their site. Google Cloud discusses disaster recovery and data loss in its [https://cloud.google.com/architecture/disaster-recovery Cloud Architecture Center]. The company states in their platform terms, however, that "neither party will be liable for failure or delay in performance to the extent caused by circumstances beyond its reasonable control, including acts of God, natural disasters, terrorism, riots, or war."<ref name="GoogleToS21" /> Like other cloud providers, Google Cloud uses three-zone regions for redundancy: "Putting resources in different zones in a region reduces the risk of an infrastructure outage affecting all resources simultaneously. Putting resources in different regions provides an even higher degree of failure independence. This lets you design robust systems with resources spread across different failure domains."<ref name="GoogleRegions">{{cite web |url=https://cloud.google.com/compute/docs/regions-zones |title=Regions and zones |work=Compute Engine Documentation |publisher=Google Cloud |accessdate=16 April 2021}}</ref> It's highly unlikely that all three zones would be affected in an catastrophic event. However, if this is a concern, discuss further data redundancy with a Google Cloud representative.
It's not publicly clear how Google Cloud would handle your data should they go out of business, nor do they mention much about catastrophic loss on their site. Google Cloud discusses disaster recovery and data loss in its [https://cloud.google.com/architecture/disaster-recovery Cloud Architecture Center]. The company states in their platform terms, however, that "neither party will be liable for failure or delay in performance to the extent caused by circumstances beyond its reasonable control, including acts of God, natural disasters, terrorism, riots, or war."<ref name="GoogleToS21" /> Like other cloud providers, Google Cloud uses three-zone regions for redundancy: "Putting resources in different zones in a region reduces the risk of an infrastructure outage affecting all resources simultaneously. Putting resources in different regions provides an even higher degree of failure independence. This lets you design robust systems with resources spread across different failure domains."<ref name="GoogleRegions">{{cite web |url=https://cloud.google.com/compute/docs/regions-zones |title=Regions and zones |work=Compute Engine Documentation |publisher=Google Cloud |accessdate=02 August 2023}}</ref> It's highly unlikely that all three zones would be affected in an catastrophic event. However, if this is a concern, discuss further data redundancy with a Google Cloud representative.




17. '''Can we use your interface to extract our data when we want, and in what format will it be?'''
17. '''Can we use your interface to extract our data when we want, and in what format will it be?'''


Google Cloud advertises their Cloud Storage Transfer Service as "a software service that enables you to transfer large amounts of data from your data center to a Cloud Storage bucket."<ref name="GoogleTransfer">{{cite web |url=https://cloud.google.com/storage-transfer/docs/on-prem-overview |title=Transfer service for on-premises data overview |publisher=Google Cloud |accessdate=16 April 2021}}</ref> They also provide [https://cloud.google.com/bigquery/docs/exporting-data guidance] on extracting data out of its multi-cloud data warehouse BigQuery. Google Cloud has also published a [https://services.google.com/fh/files/misc/googlecloud_swipo_coc_transparency_declaration_dec2020.pdf?hl=fr Transparency Declaration] that maps their processes to the voluntary SWIPO (Switching Cloud Providers and Porting Data) codes of conduct.<ref name="GoogleSWIPO">{{cite web |url=https://cloud.google.com/security/compliance/swipo-codes |title=SWIPO Data Portability Code of Conduct |publisher=Google Cloud |accessdate=16 April 2021}}</ref> Read more about this on their [https://cloud.google.com/security/compliance/swipo-codes SWIPO page].
Google Cloud advertises their Cloud Storage Transfer Service as a software service that allows you to "transfer data quickly and securely between object and file storage across Google Cloud, Amazon, Azure, on-premises, and more."<ref name="GoogleTransfer">{{cite web |url=https://cloud.google.com/storage-transfer-service |title=Storage Transfer Service |publisher=Google Cloud |accessdate=02 August 2023}}</ref> They also provide [https://cloud.google.com/bigquery/docs/exporting-data guidance] on extracting data out of its multi-cloud data warehouse BigQuery. Google Cloud has also published a [https://services.google.com/fh/files/misc/googlecloud_swipo_coc_transparency_declaration_dec2020.pdf?hl=fr Transparency Declaration] that maps their processes to the voluntary SWIPO (Switching Cloud Providers and Porting Data) codes of conduct.<ref name="GoogleSWIPO">{{cite web |url=https://cloud.google.com/security/compliance/swipo-codes |title=SWIPO Data Portability Code of Conduct |publisher=Google Cloud |accessdate=02 August 2023}}</ref> Read more about this on their [https://cloud.google.com/security/compliance/swipo-codes SWIPO page].




Line 167: Line 167:


It is unclear if support personnel are local to the customer or if support is outsourced to another business and country. Discuss this with a Google Cloud representative.
It is unclear if support personnel are local to the customer or if support is outsourced to another business and country. Discuss this with a Google Cloud representative.


==Managed security services==
==Managed security services==
Google discontinued its managed services offerings in the United States in 2019.<ref name="WeissbrotGoogle19">{{cite web |url=https://adexchanger.com/agencies/google-exits-managed-services-welcome-news-for-its-key-agency-partners/ |title=Google Exits Managed Services, Welcome News For Its Key Agency Partners |author=Weissbrot, A. |work=Ad Exchanger |date=26 November 2019 |accessdate=27 May 2021}}</ref>
Google discontinued its managed services offerings in the United States in 2019.<ref name="WeissbrotGoogle19">{{cite web |url=https://adexchanger.com/agencies/google-exits-managed-services-welcome-news-for-its-key-agency-partners/ |title=Google Exits Managed Services, Welcome News For Its Key Agency Partners |author=Weissbrot, A. |work=Ad Exchanger |date=26 November 2019 |accessdate=02 August 2023}}</ref>




Line 178: Line 177:
* [https://cloud.google.com/architecture/disaster-recovery Disaster recovery whitepaper]
* [https://cloud.google.com/architecture/disaster-recovery Disaster recovery whitepaper]
* [https://cloud.google.com/security/compliance/hipaa-compliance HIPAA whitepaper repository]
* [https://cloud.google.com/security/compliance/hipaa-compliance HIPAA whitepaper repository]
* [https://cloud.google.com/security/overview/whitepaper Security whitepaper]
* [https://cloud.google.com/docs/security/overview/whitepaper Security overview]


===External links===
===External links===
* [https://cloud.google.com/security Google Cloud architecture framework or description]
* [https://cloud.google.com/security Google Cloud architecture framework or description]
* [https://cloud.google.com/anthos/docs/concepts/gke-shared-responsibility Google Cloud shared responsibility model]
* [https://cloud.google.com/architecture/framework/security/shared-responsibility-shared-fate Google Cloud shared responsibility model]
* [https://aws.amazon.com/compliance/programs/ Google Cloud trust center]
* [https://aws.amazon.com/compliance/programs/ Google Cloud trust center]


==References==
==References==
{{Reflist|colwidth=30em}}
{{Reflist|colwidth=30em}}
<!---Place all category tags here-->
[[Category:Cloud computing services]]

Latest revision as of 22:47, 3 April 2024

Google Cloud
Industry Cloud computing, Web services
Founder(s) Sergey Brin, Larry Page
Headquarters Mountain View, California, United States
Area served Worldwide
Key people Thomas Kurian (CEO)
Products IaaS, PaaS, DBaaS, DaaS
Revenue $7.4 billion (2023, Q1)[1]
Parent Google
Website cloud.google.com


Google Cloud is a Google-driven suite of public, private, hybrid, and multicloud computing services that runs on the same infrastructure that Google uses internally for its end-user products.[2] Google Cloud boasts data centers in 37 regions, 112 zones, and 187 network edge locations.[3] More than 100 different products and services are associated with Google Cloud, representing elastic computing, networking, content delivery, data storage, database management, security management, enterprise management, data analysis, media management, container management, developer support, scientific computing, internet of things, and artificial intelligence.[4]


Provider research

This section uses public information to provide some answers to the 18 questions posed in Chapter 6 of the wiki-based guide Choosing and Implementing a Cloud-based Service for Your Laboratory. In some cases, public information could not be found, and a recommendation to further discuss the question with the cloud service provider (CSP) is made.


1. What experience do you have working with laboratory customers in our specific industry?

Examples of labs that have worked with Google Cloud at some point include the Department of Energy's National Labs[5], Hologic[6], IDEXX Laboratories[7], Spectra Laboratories[8], and Washington Laboratories.[9] It's also worth noting that some laboratory information management system (LIMS) developers have offered their solution on Google Cloud over the years, including GoMeyra Corporation[10], Online LIMS Canada Limited[11], and Persistent Systems Ltd.[12] A Google Cloud representative is likely to be able to supply more examples of laboratories and laboratory informatics developers that use or have used Google Cloud.


2. Can your solution readily integrate with our other systems and business processes, making it easier for our end users to perform their tasks?

It will ultimately be up to your organization to get an answer tailored to your systems and business processes. However, this much can be said about Google Cloud integrations. Google provides documentation about how to integrate your applications with its backend and frontend, including its APIs. Additionally, Google Cloud discusses at length the concept of data integration, including its Cloud Data Fusion (CDF) offering for hybrid and multicloud integration. The CDF library of connectors and transformations, along with its "end-to-end data lineage, integration metadata, and cloud-native security and data protection services," helps customers keep data integrated no matter its location.[13]


3. What is the average total historical downtime for the service(s) we're interested in?

Some public information is made available about historic outages and downtime. Google Cloud has a systems status page with status history (you have to click on the "View Summary and History" link at the bottom). You should be able to read through the incident details for each issue, going back through a fair amount of history. This will give you a partial picture of the issues experienced in the past, as well as any scheduled maintenance and currently impacted services. A follow-up on this question with a Google Cloud representative may reveal more historical downtime history for the services you are interested in.


4. Do we receive comprehensive downtime support in the case of downtime?

Google Cloud does not make this answer clear. However, the answer is likely tied to what after-sales support plan you choose. Confirm with Google Cloud what downtime support they provide based on the services your organization are interested in.


5. Where are your servers located, and how is data securely transferred to and from those servers?

Google Cloud has 37 regions it operates in[3], with each region having at least three zones[14], with more three-zone regions planned.[3] Google Cloud uses its content delivery network Cloud CDN, which "gives you the same world-class infrastructure to accelerate and secure mission critical web experiences at a global scale."[15] When moving data to and from on-premises and Google Cloud systems, multiple transfer options exist, including normal online transfer, a full-scale transfer service, transfer appliances, and scheduled SaaS data transfers.[16] Data in motion is encrypted following a strict company policy. As for data localization and residency requirements, Google Cloud gives customers many controls, including organization policies, Cloud IAM configurations, and VPC service controls.


6. Who will have access to our data (including subcontractors), and what credentials, certifications, and compliance training do they have?

In its security whitepaper, Google states the following[17]:

The physical security in Google data centers is a layered security model. Physical security includes safeguards like custom-designed electronic access cards, alarms, vehicle access barriers, perimeter fencing, metal detectors, and biometrics. In addition, to detect and track intruders, we use security measures such as laser beam intrusion detection and 24/7 monitoring by high-resolution interior and exterior cameras. Access logs, activity records, and camera footage are available in case an incident occurs. Experienced security guards, who have undergone rigorous background checks and training, routinely patrol our data centers. As you get closer to the data center floor, security measures also increase. Access to the data center floor is only possible through a security corridor that implements multi-factor access control using security badges and biometrics. Only approved employees with specific roles may enter. Less than one percent of Google employees will ever set foot in one of our data centers.

For information about specific certifications and compliance training, discuss this with a Google Cloud representative.


7. Will our sensitive and regulated data be stored on a machine dedicated to complying with the necessary regulations?

Not all Google Cloud machines have the same controls on them; it will depend on the region, product, and compliance requirements of your lab. That said, verify with a representative that the machine your data will land on meets all the necessary regulations affecting your data.


8. How segregated is our cloud data from another customer's, i.e., will lapses of security of another customer's cloud affect our cloud? (It typically won't, but asking the question will hopefully prompt the provider to better explain how your data is segregated.)

Unlike other cloud providers, it's not entirely clear what Google Cloud's stance is on physical separation. The only information to be found was a sentence in their security whitepaper[17]: "Our infrastructure is designed to logically isolate each customer's data from the data of other customers and users, even when it's stored on the same physical server." Presumably the type of data you have will determine which servers you should use, based upon those servers compliance ratings. You'll have to have a discussion with a Google Cloud representative to learn more about their position on physical separation of data.

Tenant isolation is addressed by Google Cloud under the scope of Kubernetes both here and here. However, like many aspects of security, configuration and best practices are a shared responsibility. Additional details about multi-tenancy and related security on Google Cloud can be found under the "Secure Service Deployment" section of their Google Infrastructure Security Design Overview document. Consult with a representative to learn more.


9. Do you have documented data security policies?

Google Cloud documents its security practices in several places:

Some security-related documents may not be publicly available, requiring direct discussion with a Google Cloud representative to obtain them.


10. How do you test your platform's security?

Google Cloud has information scattered around in its documentation. Most notable is this passage from its security whitepaper[17]:

Our dedicated security team includes some of the world's foremost experts in information security, application security, cryptography, and network security. This team maintains our defense systems, develops security review processes, builds security infrastructure, and implements our security policies. The team actively scans for security threats using commercial and custom tools. The team also conducts penetration tests and performs quality assurance and security reviews.

The company also mentions that they conduct "intensive automated and manual penetration efforts, including extensive Red Team exercises."[17]

There are other pieces of information related to non-Google Cloud personnel testing the platform. Under its Cloud Data Processing Addendum, customers have some audit rights, though there are limited to those affected by GDPR or Model Contract Clauses. Otherwise, the customer must rely on third-party audit results.[18]


11. What are your policies for security audits, intrusion detection, and intrusion reporting?

Audits: Google Cloud has this to say about security audits:

  • "We vet the component vendors that we work with and choose components with care. We work with vendors to audit and validate the security properties that are provided by the components."[19]
  • "We have a dedicated internal audit team that reviews our products' compliance with security laws and regulations around the world. As new auditing standards are created and existing standards are updated, the internal audit team determines what controls, processes, and systems are needed in order to help meet them. This team supports independent audits and assessments by third parties."[17]
  • "Our dedicated security teams, privacy teams, and internal audit teams monitor and audit employee access, and we provide audit logs to you through Access Transparency for Google Cloud."[17]

Intrusion detection and reporting: Google Cloud provides Security Command Center to its customers for intrusion detection and reporting.[20] As for its own intrusion detection, Google Cloud discusses this in its Google Infrastructure Security Design Overview document[19]:

We use sophisticated data processing pipelines to integrate host-based signals on individual devices, network-based signals from various monitoring points in the infrastructure, and signals from infrastructure services. Rules and machine intelligence built on top of these pipelines give operational security engineers warnings of possible incidents. Our investigation and incident-response teams triage, investigate, and respond to these potential incidents 24 hours a day, 365 days a year.


12. What data logging information is kept and acted upon in relation to our data?

Google Cloud mentions data logging in several places:

  • Google employee access to end user information[17]
  • speech-to-text information and various other types of information (if opted in to data logging program)[21]

However, it's not clear what other data logging they may conduct and act upon related to your data. Talk to a representative to determine this.


13. How thorough are those logs and can we audit them on-demand?

Google Cloud users can view their own logs through tools like Google's Cloud Logging service and its Cloud Audit Logs. However, unlike Alibaba, it's unclear if you are able to audit internal Google Cloud operation logs on-demand. This is a conversation to have with a Google Cloud representative.


14. For HIPAA-eligible data (e-PHI) we may have, will you sign a business associate agreement?

Yes, AWS will sign a business associate agreement.[22] Consult their HIPAA compliance page for more details on their approach to HIPAA compliance.


15. What happens to our data should the contract expire or be terminated?

Google Cloud makes several statements about customer data in its platform terms:

  • "If the Agreement is terminated, then (a) all rights and access to the Services will terminate (including access to Customer Data, if applicable), unless otherwise described in this Agreement ..."[23]
  • "If Customer wishes to retain any Customer Data after the end of the Term, it may instruct Google in accordance with Section 9.1 (Access; Rectification; Restricted Processing; Portability) to return that data during the Term. Subject to Section 6.3 (Deferred Deletion Instruction), Customer instructs Google to delete all remaining Customer Data (including existing copies) from Google’s systems at the end of the Term in accordance with applicable law. After a recovery period of up to 30 days from that date, Google will comply with this Instruction as soon as reasonably practicable and within a maximum period of 180 days, unless European Law requires storage."[18]


16. What happens to our data should you go out of business or suffer a catastrophic event?

It's not publicly clear how Google Cloud would handle your data should they go out of business, nor do they mention much about catastrophic loss on their site. Google Cloud discusses disaster recovery and data loss in its Cloud Architecture Center. The company states in their platform terms, however, that "neither party will be liable for failure or delay in performance to the extent caused by circumstances beyond its reasonable control, including acts of God, natural disasters, terrorism, riots, or war."[23] Like other cloud providers, Google Cloud uses three-zone regions for redundancy: "Putting resources in different zones in a region reduces the risk of an infrastructure outage affecting all resources simultaneously. Putting resources in different regions provides an even higher degree of failure independence. This lets you design robust systems with resources spread across different failure domains."[24] It's highly unlikely that all three zones would be affected in an catastrophic event. However, if this is a concern, discuss further data redundancy with a Google Cloud representative.


17. Can we use your interface to extract our data when we want, and in what format will it be?

Google Cloud advertises their Cloud Storage Transfer Service as a software service that allows you to "transfer data quickly and securely between object and file storage across Google Cloud, Amazon, Azure, on-premises, and more."[25] They also provide guidance on extracting data out of its multi-cloud data warehouse BigQuery. Google Cloud has also published a Transparency Declaration that maps their processes to the voluntary SWIPO (Switching Cloud Providers and Porting Data) codes of conduct.[26] Read more about this on their SWIPO page.


18. Are your support services native or outsourced/offshored?

It is unclear if support personnel are local to the customer or if support is outsourced to another business and country. Discuss this with a Google Cloud representative.

Managed security services

Google discontinued its managed services offerings in the United States in 2019.[27]


Additional information

Documentation and other media

External links

References

  1. Miller, R. (25 April 2023). "Google Cloud turns profit for the first time". TechCrunch. https://techcrunch.com/2023/04/25/google-cloud-turns-profit-for-the-first-time/. Retrieved 02 August 2023. 
  2. "Why Google Cloud". Google. https://cloud.google.com/why-google-cloud. Retrieved 02 August 2023. 
  3. 3.0 3.1 3.2 "Cloud locations". Google Cloud. https://cloud.google.com/about/locations. Retrieved 02 August 2023. 
  4. "Google Cloud Products". Google. https://cloud.google.com/products. Retrieved 02 August 2023. 
  5. Nyczepir, D. (15 October 2020). "DOE research facilities move to Google Cloud". FedScoop. https://www.fedscoop.com/doe-google-cloud-productivity-tools/. Retrieved 02 August 2023. 
  6. Ford, O. (2 February 2021). "Hologic is Reaching for the (Google) Cloud with New Collaboration". Medical Device and Diagnostic Industry. https://www.mddionline.com/digital-health/hologic-reaching-google-cloud-new-collaboration. Retrieved 02 August 2023. 
  7. "IDEXX Laboratories: Using big data to be the top dog in animal diagnostics". Google Cloud. https://cloud.google.com/customers/idexx-laboratories. Retrieved 02 August 2023. 
  8. "Spectra Laboratories". ZoomInfo. https://www.zoominfo.com/c/spectra-laboratories-inc/112181570. Retrieved 02 August 2023. 
  9. "Washington Laboratories". ZoomInfo. https://www.zoominfo.com/c/washington-laboratories-ltd/41451684. Retrieved 02 August 2023. 
  10. "GoMeyra Policies". GoMeyra Corporation. Archived from the original on 19 April 2021. https://web.archive.org/web/20210419034125/https://www.gomeyra.com/policies/. Retrieved 02 August 2023. 
  11. "Online LIMS Canada". ZoomInfo. https://www.zoominfo.com/c/online-lims-canada-limited/84935207. Retrieved 02 August 2023. 
  12. "Accelerate your digital transformation journey with Google". Persistent Systems Ltd. https://www.persistent.com/partner-ecosystem/google/. Retrieved 02 August 2023. 
  13. "Cloud Data Fusion". Google Cloud. https://cloud.google.com/data-fusion/. Retrieved 02 August 2023. 
  14. "Regions and zones". Compute Engine Documentation. Google Cloud. https://cloud.google.com/compute/docs/regions-zones. Retrieved 02 August 2023. 
  15. "Cloud CDN". Google Cloud. https://cloud.google.com/cdn. Retrieved 02 August 2023. 
  16. "Storage Transfer Service". Google Cloud. https://cloud.google.com/storage-transfer-service. Retrieved 02 August 2023. 
  17. 17.0 17.1 17.2 17.3 17.4 17.5 17.6 "Google security overview". Google Cloud. May 2022. https://cloud.google.com/docs/security/overview/whitepaper. Retrieved 02 August 2023. 
  18. 18.0 18.1 "Cloud Data Processing Addendum (Customers)". Google Cloud. 20 September 2022. https://cloud.google.com/terms/data-processing-addendum. Retrieved 02 August 2023. 
  19. 19.0 19.1 "Google Infrastructure Security Design Overview" (PDF). Google Cloud. June 2023. https://cloud.google.com/static/docs/security/infrastructure/design/resources/google_infrastructure_whitepaper_fa.pdf. Retrieved 02 August 2023. 
  20. "Security Command Center". Google Cloud. https://cloud.google.com/security-command-center/. Retrieved 02 August 2023. 
  21. "Data logging". Cloud Speech-to-Text. Google Cloud. 2 August 2023. https://cloud.google.com/speech-to-text/docs/data-logging. Retrieved 02 August 2023. 
  22. "HIPAA Compliance on Google Cloud". Google Cloud. 27 July 2023. https://cloud.google.com/security/compliance/hipaa. Retrieved 02 August 2023. 
  23. 23.0 23.1 "Google Cloud Platform Terms of Service". Google Cloud. 12 July 2023. https://cloud.google.com/terms. Retrieved 02 August 2023. 
  24. "Regions and zones". Compute Engine Documentation. Google Cloud. https://cloud.google.com/compute/docs/regions-zones. Retrieved 02 August 2023. 
  25. "Storage Transfer Service". Google Cloud. https://cloud.google.com/storage-transfer-service. Retrieved 02 August 2023. 
  26. "SWIPO Data Portability Code of Conduct". Google Cloud. https://cloud.google.com/security/compliance/swipo-codes. Retrieved 02 August 2023. 
  27. Weissbrot, A. (26 November 2019). "Google Exits Managed Services, Welcome News For Its Key Agency Partners". Ad Exchanger. https://adexchanger.com/agencies/google-exits-managed-services-welcome-news-for-its-key-agency-partners/. Retrieved 02 August 2023.