The Wall Street Journal revealed on July 2nd, that it is in fact very common for third party users and businesses, even non-Google applications, to have access to users' private Gmail conversations. While they could not present any cases where this data was being mishandled, the news still demanded clarification in the light of recent Facebook's privacy scandal. Google, in an attempt to defend its actions, came forward the very next day, with a blog post.
Frey, director of company's security and the writer of this particular post, elaborated on how Google was far more responsible with all the user data it allowed other parties to access. While not delving into the depths of the process, she highlighted a few general processes apps have to undergo before they are granted access to user data. According to the blog, companies go through a 'multi-process- screening', which involves automated and manual review of the developer, assessment of applications' privacy policy, what permissions those applications have, and etc. Frey also clarified the audience that Google does not read anyone's mails, unless they believe that security is at stake. She also presented privacy-concerned readers with a few measures with which they may protect their private data.
Throughout the post the thing that was reiterated the most was that Google is a responsible domain, handling personal information with efficiency, and ensuring that data never reaches the wrong hands. The fact that Google stopped scanning emails for the development of G Suite, long before the Facebook scandal happened verifies that the company had realized that employing this strategy is not the most shrewd thing to do.
Frey, director of company's security and the writer of this particular post, elaborated on how Google was far more responsible with all the user data it allowed other parties to access. While not delving into the depths of the process, she highlighted a few general processes apps have to undergo before they are granted access to user data. According to the blog, companies go through a 'multi-process- screening', which involves automated and manual review of the developer, assessment of applications' privacy policy, what permissions those applications have, and etc. Frey also clarified the audience that Google does not read anyone's mails, unless they believe that security is at stake. She also presented privacy-concerned readers with a few measures with which they may protect their private data.
Throughout the post the thing that was reiterated the most was that Google is a responsible domain, handling personal information with efficiency, and ensuring that data never reaches the wrong hands. The fact that Google stopped scanning emails for the development of G Suite, long before the Facebook scandal happened verifies that the company had realized that employing this strategy is not the most shrewd thing to do.