‎ > ‎news_web3‎ > ‎

Google Apps, Vault and Cloud Platform components complete SSAE 16 audit

Posted by Eran Feigenbaum, Director of Security, Google Enterprise

Security is incredibly important to our users and we’ve invested many millions of dollars to help keep them safe online. For our Apps and Cloud Platform customers, we provide transparency and visibility to those protections through our Google Apps Security Whitepaper and our data center video tour.

While our descriptions of what we do are valuable to customers, we’re also committed to conducting independent 3rd party assessments of our security and data protection practices. Building on the SSAE 16 audit we completed last year and the ISO 27001 certification for Google Apps that we received in May, we’ve successfully completed a new SSAE 16 / ISAE 3402 SOC 2 Type II audit that covers the following products:
  • Google Apps 
  • Google Apps Vault 
  • Google Apps Script 
  • Google App Engine 
  • Google Cloud Storage
This year, we’ve added Google Apps Vault to the audit, and performed a SOC 2, Type II audit that's more detailed and comprehensive than last year’s SOC 1 audit. The SOC 2 audit uses a standard set of controls including security, availability, processing integrity, and confidentiality of the data that is stored in our services.

The audit was conducted by Ernst & Young, a leading independent auditor. For Google Apps and Cloud Platform customers, this audit helps verify the data protection technologies and processes we have in place and demonstrates our commitment to protecting users’ data.