For our base-level privacy agreement, visit this link.
The following privacy addendum is intended to provide modifications to our base privacy agreement specific to Gopher for Chrome Basic and Premium (Gopher Buddy) versions.
What information does Gopher for Chrome access and store?
Gopher for Chrome allows users to download and store some Directory API available fields and Telemetry API available fields associated with their Chrome devices. These fields include unique device identifiers and the email addresses of recent device users.
Where and how is this information stored?
The device fleet data from Google’s APIs is refreshed daily to support analysis, reporting, and insights and is stored in a Cloud SQL database on GCP. The data is encrypted at rest and in transit with connectivity via VPC within Gopher for Chrome’s architecture.
Gopher for Chrome interacts with Google Sheets within a user’s Google Drive, under the direct control of the user. The sharing of these sheets is also under the control of users according to their needs and Google Workspace restrictions.
What control does the user have over the storage and destruction of this information?
Google Sheets remain in full control of users and can be deleted as required.
For customers’ device fleet data stored in Cloud SQL, a Super Admin can ‘Disable’ the device cache via the Gopher for Chrome web application. This will delete all device data and stop the daily sync of this information. However, data related to historic device usage is not removed immediately, but this data will be deleted following the expiry of the customer’s tool license or on request.
What user information does Gopher Buddy collect and how is student data privacy protected?
The Gopher Buddy extension -- part of Gopher for Chrome Premium -- collects data on managed Google Workspace users who have it force-installed by a domain administrator, and it is enabled for managed Chrome devices.
No functionality exists, and no data collection takes place for non-managed (e.g. non-school-owned) devices, or on personal Google accounts (i.e. gmail.com accounts).
The relationship between an email and a Google Workspace ID is also stored within the Gopher for Chrome architecture to enable accurate mapping of device usage. This lookup is fully secured within the internal architecture and is not exposed to the public internet.
When data collection is taking place, the extension sends device usage session details — encrypted before transmission via HTTPS — to the service, which stores data in an encrypted state in Big Query on GCP. For the purpose of meeting data privacy concerns, the information stored by the Gopher Buddy Datastore is limited to:
- Device ID
- Google Workspace customer (domain-level) ID
- Domain name
- Google Workspace User ID
- Google Workspace Email Address (encrypted at rest & stored in a different location)
- Local IP Address
- Public IP Address
- Session start time
- Session end time
- Session duration (minutes)
- User Org Unit Path
- Device Org Unit Path
- Chrome version
How long is data retained if I delete/remove the application?
On uninstallation, the administrator may contact Support to request deletion.
|Description of Change