5.1.1 Responsibilities for transformers and controllers. When EU data protection legislation applies to the processing of the customer`s personal data: Data Center Access Procedures. Google manages formal access procedures to allow physical access to data centers. Data centers are placed in facilities that require electronic access to the card key, with alarms related to the on-site security process. All participants in the data centre must identify themselves and prove safety on the spot. Only authorized employees, contractors and visitors can enter the computing centres. Only authorized staff and contractors can request access to these facilities with electronic card keys. Requests for access to electronic card keys in the data center must be e-mailed and require the consent of the advertiser manager and the data center manager. All other participants who require temporary access to the data centre must: (i) obtain permission from data centre managers in advance for the relevant data centre and the internal areas they wish to visit; (ii) register for on-site security operations; and (iii) an authorized access file to the data center in which the person is identified as authorized.
9.2.1 Customer responsibility for requests. If Google`s cloud data protection team receives a request from a relevant person regarding the customer`s personal data over the lifetime and identifies the request to the customer, Google will ask the person concerned to send their request to the customer. The customer is responsible for responding to such a request, including, if necessary, the use of the functionality of the services. Data transmission. Data centers are typically connected by high-speed private connections to enable secure and fast data transmission between data centers. The goal is to prevent data from being read, copied, modified or deleted without permission during electronic transmission, transport or storage on data media. Google transmits data via standard internet protocols. (a) data storage, isolation and logging. Google stores data in a multi-agent environment on its own servers. Subject to the customer`s instructions to the contrary (for example. B in the form of a selection of data sites), Google replicates customer data between multiple data centers geographically distributed.
Google also logically isolates customer data. The customer is given control of certain data sharing policies. These policies, in accordance with the functionality of the services, may allow the customer to determine the parameters applicable to the customer`s end-users for specific purposes. The customer can use the logging features provided by Google via the services. 2.2 The terms `personal data`, `person concerned`, `treatment`, `responsible` and `transformer` used under these conditions mean that the RGPD applies, whether it is EU data protection legislation or non-EU data protection legislation.