Google Workspace Enterprise
Google Workspace is a professional office suite of collaborative productivity apps. Easily work on email, calendars, documents, spreadsheets, and slides across your devices, with or without the internet. Keep all your work in one place with secure access from your computer, phone, or tablet.
Features
- Email, Calendar, Instant Messaging and Video Conferencing
- Drive, Documents, Spreadsheets, Slides, Note Taking and Forms
- Vault for records management - eDiscovery and archiving
- Security center
- Advanced enterprise controls and customization
- Advanced Data Loss Prevention for Gmail and Drive
- Analyze Gmail logs in BigQuery
- Data Regions at rest for service data in scope
- Unlimited storage
Benefits
- Collaborate in real-time
- Store and share files in the cloud
- Secure your data and devices
- Easy to connect, create, access and control
- Limit certain Google Workspace service data at rest to US/Europe
- Manage, retain, search, export your organization’s email and on-the-record chats
- Detect sensitive data in Gmail/Drive and prevent sharing
- Security analytics, actionable insights, and recommendations in a comprehensive dashboard
Pricing
£0 to £0 a unit
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
6 3 8 5 5 9 9 6 3 8 4 6 6 4 3
Contact
GOOGLE CLOUD EMEA LIMITED
Iain Burgess
Telephone: +447876258053
Email: ps-frameworks@google.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Public cloud
- Service constraints
- Please refer to https://workspace.google.com for more information on service constraints.
- System requirements
-
- A modern web browser
- Please refer to https://workspace.google.com for more information on technical requirements.
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
Standard Support is available free of cost to all Workspace customers and includes 24/7 multi-channel technical support for critical issues (P1). For more information, visit the Google Workspace Customer Care Portfolio (https://workspace.google.com/support/)
Further support offerings are available at an extra cost, and can be found here: https://workspace.google.com/intl/en_uk/support/
Priorities defined: https://support.google.com/a/answer/1047213
Technical Support Services Guidelines: https://workspace.google.com/terms/tssg.html - User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AAA
- Phone support
- No
- Web chat support
- Web chat
- Web chat support availability
- 24 hours, 7 days a week
- Web chat support accessibility standard
- WCAG 2.1 AAA
- Web chat accessibility testing
- N/A
- Onsite support
- No
- Support levels
-
Google Workspace customers are eligible for Standard support at no additional cost. Enhanced & Premium Support is available at an additional cost. Enhanced & Premium Support includes improved target response times and Premium Support includes 1:1 consultation with a Technical Account Manager.
Support services are described in more detail here: https://workspace.google.com/support/ - Support available to third parties
- No
Onboarding and offboarding
- Getting started
-
Google provides a business transformation framework based on research in accredited universities. An online Getting Started learning path is described at https://support.google.com/
We also provide Google Workspace training which is a plug-in to your Chrome and describes step-by step functionalities and processes.
The Google Workspace Learning Center https://support.google.com/a/users provides numerous documentation, guides, tips, customer examples, and training resources. - Service documentation
- Yes
- Documentation formats
-
- HTML
- Other
- Other documentation formats
- Contextual training videos
- End-of-contract data extraction
- We provide tools to our customers to export their data. More information can be found here: https://support.google.com/a/answer/100458?hl=en#all
- End-of-contract process
-
"For information on offboarding, please refer to:
https://support.google.com/a/answer/1257646#direct_step2_cancel_subscriptions"
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- Yes
- Compatible operating systems
-
- Android
- IOS
- Linux or Unix
- MacOS
- Windows
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- We've written native applications for Android and iOS which are designed with those user interface frameworks in mind.
- Service interface
- Yes
- User support accessibility
- WCAG 2.1 AAA
- Description of service interface
-
With the Admin Console you can:
Easily add users, manage devices, configure security and settings so your data stays safe.
Use integrated Cloud Identity features to manage users and set up security options.
Protect your organization with security analytics and best practice recommendations within the security center.
Distribute apps to employees and keep data secure on employee’s iOS and Android devices.
Use mobile management to distribute apps and get employees up and running quickly, check usage, manage security settings, and lock or wipe devices remotely. - Accessibility standards
- WCAG 2.1 AA or EN 301 549
- Accessibility testing
- It is in our pipeline to test and deliver our products and services to become more accessible for assistive technology users.
- API
- Yes
- What users can and can't do using the API
- The scope of capabilities exposed via API to Google Workspace/Cloud Identity/Drive/Cloud Search Platform users is very broad and encompasses most major use cases. API's are can be found here: https://developers.google.com/
- API documentation
- Yes
- API documentation formats
-
- HTML
- Other
- API sandbox or test environment
- Yes
- Customisation available
- Yes
- Description of customisation
-
Google Apps Script is a JavaScript cloud scripting language that provides easy ways to automate tasks across Google products.
With Apps Script, you can create Add-ons for Google Docs, Macros, menus, and custom functions as well as managing responses for Google Forms.
Scaling
- Independence of resources
- Google Workspace provides scalable and elastic cloud services.
Analytics
- Service usage metrics
- Yes
- Metrics types
-
- Highlights: Key metrics and trends including app usage, users status, file visibility, and security.
- Security: Assess overall exposure to data breach. Discover which users not using 2-step verification, installing external apps, or sharing documents indiscriminately.
- Apps Usage Activity: See how your organization uses Google Workspace over a specific period by examining email activity, number of spreadsheets created, number of files shared, and more.
- Account Activity: Access all data from Security, Apps Usage Activity, and Highlights pages in a single master report.
- Audits: View logs of various activity, including admin, mobile activity, and more.
More: https://support.google.com/a/topic/29163?hl=en&ref_topic=4490889 - Reporting types
-
- API access
- Real-time dashboards
- Regular reports
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- None
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- European Economic Area (EEA)
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Supplier-defined controls
- Penetration testing frequency
- At least every 6 months
- Penetration testing approach
- In-house
- Protecting data at rest
- Other
- Other data at rest protection approach
-
Data belonging to Google Workspace customers is stored at rest in two types of systems: disks and backup media.
Disks are used to write and retrieve data in multiple replicated copies. (Refer to Google Workspace Security Whitepaper.) Google also stores data on offline backup media to help ensure recovery from any catastrophic error or natural disaster at one of our data centers.
Data stored at rest is encrypted on both disks and backup media, but for each system we use a distinct approach for encryption to mitigate the corresponding security risks.
For policies and compliance reports, download directly from: https://cloud.google.com/security/compliance/compliance-reports-manager#/ - Data sanitisation process
- Yes
- Data sanitisation type
- Explicit overwriting of storage before reallocation
- Equipment disposal approach
- In-house destruction process
Data importing and exporting
- Data export approach
-
Please refer to
https://support.google.com/accounts/answer/3024190?hl=en - Data export formats
-
- CSV
- ODF
- Other
- Other data export formats
-
- DOCX
- XLSX
- PPTX
- Data import formats
-
- CSV
- ODF
- Other
- Other data import formats
-
- DOCX
- XLSX
- PPTX
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- During the Term of the applicable Google Workspace Agreement (or prior versions of the agreement governing the use of Google Workspace) (the "Agreement"), the (i) Google Workspace Covered Services web interface will be operational and available to Customer at least 99.9% of the time in any calendar month; and (ii) Google Voice will be operational within 2 business days of Customer's acceptance of the Voice Service Specific Terms via the Admin Console (the "Google Workspace SLA"). If Google does not meet the Google Workspace SLA, and if Customer meets its obligations under this Google Workspace SLA, Customer will be eligible to receive the Service Credits described below. This Google Workspace SLA states Customer's sole and exclusive remedy for any failure by Google to meet the Google Workspace SLA.
- Approach to resilience
- All data is redundantly stored across a minimum of 3 data centers, and all services are designed to leverage the redundant data center infrastructure powering Google services.
- Outage reporting
-
Please refer to the link below
https://www.google.com/appsstatus#hl=en-GB&v=status
Identity and authentication
- User authentication needed
- Yes
- User authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Limited access network (for example PSN)
- Dedicated link (for example VPN)
- Username or password
- Other
- Other user authentication
-
A built-in Password Monitor is visible to the end user upon password
creation and to the System Administrators of the tenant whom can decide to force a password change on any user that is later detected to have a password that is weak. Google's native authentication has
protections in place that would detect a brute force attack and challenge the user to solve a Captcha and would auto lock the account if suspicious activity is detected. The tenant's System Administrators can
reset that account for the end user - Access restrictions in management interfaces and support channels
-
Google Workspace provides administrative features made available to Customer within the Admin Console for the management of Google-hosted accounts, mobile devices, and application within the Customer’s domain. Advanced security and control features may be subject to an additional charge
Support services are only provided to authorized customer administrators whose identities have been verified in several ways. Googler access is monitored and audited by our dedicated security, privacy, and internal audit teams.
https://cloud.google.com/iam/
https://services.google.com/fh/files/misc/google_security_wp.pdf
https://services.google.com/fh/files/misc/sep_2021_caiq_self_assessment.pdf - Access restriction testing frequency
- Less than once a year
- Management access authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Dedicated link (for example VPN)
- Username or password
- Other
- Description of management access authentication
-
Google's native authentication requires a minimum 8 character complex password. Tenants can set the
maximum or increase the minimum. A Password Monitor is visible to the end user upon password
creation and to the System Administrators of the tenant. Google's native authentication has
protections in place that would detect a brute force attack and challenge the user if suspicious activity is detected. System Administrators can reset that account for the end user.
Google provides the capability for domain administrators to enforce Google's 2-step verification. The 2nd
factor could be a code generated via several supported mechanisms.
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- Other
- Other security governance standards
- For all of our policies and compliance reports, please download directly from our compliance manager - https://cloud.google.com/security/compliance/compliance-reports-manager#/
- Information security policies and processes
-
Google's cloud services are designed to deliver better security than many traditional on-premises solutions. Google makes security, and protection of data it's primary design criteria, which is the cornerstone of it's overall security governance and compliance audits. Google’s third party audit approach is designed to be comprehensive to provide assurances of Google’s information security capabilities. Customers may use these third party audits to assess how Google’s products can meet their compliance and data-processing needs.
https://cloud.google.com/security/overview/whitepaper
https://cloud.google.com/security/compliance
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
In Google production environments, software updates are manually vetted to ensure the stability of the system. Changes are then tested and cautiously rolled out to systems. The details vary somewhat depending on the service being considered, but all development work is separated from the operation systems, testing occurs in a multi-staged fashion in both environments and in dedicated test settings. Additionally, changes to code go through a process of code review involving additional engineer(s).
For all of our policies and compliance reports, please download directly from our compliance manager - https://cloud.google.com/security/compliance/compliance-reports-manager#/ - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
Google administrates a vulnerability management process that actively scans for security threats using a combination of commercially available and purpose-built in-house tools, intensive-automated and manual-penetration efforts, quality-assurance processes, software-security reviews and external audits. The vulnerability management team is responsible for tracking and following up on vulnerabilities. Once a vulnerability requiring remediation has been identified, it is logged, prioritized according to severity, and assigned an owner. The vulnerability management team tracks and follows up frequently until remediated. Google also maintains relationships with members of the security research community to track issues in Google services and open-source tools.
https://cloud.google.com/security/overview/whitepaper#vulnerability_management
Refer to: https://cloud.google.com/security/compliance/compliance-reports-manager#/ - Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
-
At many points across our global network, internal traffic is inspected for suspicious behavior, such as the presence of traffic that might indicate botnet connections. This analysis is performed using a combination of open-source and commercial tools for traffic capture and parsing. A proprietary correlation system built on top of Google technology also supports this analysis. Network analysis is supplemented by examining system logs to identify unusual behavior, such as attempted access of customer data. Google security engineers place standing search alerts on public data repositories to look for security-incidents that might affect the company’s infrastructure.
https://cloud.google.com/security/overview/whitepaper#monitoring
Refer to: https://cloud.google.com/security/compliance/compliance-reports-manager#/ - Incident management type
- Supplier-defined controls
- Incident management approach
-
We have a rigorous incident management process for security events that may affect the confidentiality, integrity, or availability of systems or data. This process specifies courses of action, procedures for notification, escalation, mitigation, and documentation. Google’s security incident management program is structured around the NIST guidance on handling incidents (NIST SP 800–61). Key staff are trained in forensics and handling evidence in preparation for an event, including the use of third-party and proprietary tools. Testing of incident response plans is performed for key areas, such as systems that store sensitive customer information.
https://cloud.google.com/security/overview/whitepaper#incident_management
Refer to: https://cloud.google.com/security/compliance/compliance-reports-manager#/
Secure development
- Approach to secure software development best practice
- Supplier-defined process
Public sector networks
- Connection to public sector networks
- No
Social Value
- Fighting climate change
-
Fighting climate change
Google's commitment to achieving socially responsible goals.
We can demonstrate our reciprocal commitment through a broad set of sustainability
principles and activities. These principles focus on a people-centric framework that is robust,
integrated, diverse, and designed with unique locations, scalability, and longevity in mind.
Sustainability principles are embedded across our operations, infrastructure, people, and
products. Google’s five key sustainability commitments include:
● Data centres: Design and operate industry-leading carbon-neutral data centres
● Renewable energy: Google is the largest corporate purchaser of renewable energy,
our operations utilise 100% carbon-free energy
● Technology and tools: Design efficient and renewable consumer electronics and
empower users with sustainable technologies
● Supply chain: Build better and more sustainable devices and services by engaging
the entire supply chain
● Sustainable workplaces: Create end-to-end sustainable workplaces through ethical
labour practices and the careful selection and use of materials to operate facilities - Covid-19 recovery
-
Covid-19 recovery
Supporting global and local communities during the COVID crisis: During the
COVID-19 pandemic, over half of Britons used Google Search to keep up to date with the
latest Government advice. In response to the devastating effects of Coronavirus on lives and
communities, Google announced a $800+ million commitment to support small- and
medium-sized businesses (SMBs), health organisations, governments and health workers
on the frontline of the global pandemic. Details on the commitment and actions demonstrate
Google’s dedication to supporting communities, organisations, and people in need. - Tackling economic inequality
-
Tackling economic inequality
UK Digital Skills Training: In partnership with the Department for Work and Pensions
(DWP) we launched U.K.-wide Google Career Certificates. To support the need to learn new
skills, we’re distributing 9,500 Google Career Certificate scholarships in the UK through
government partnerships with the DWP (9,000) and Camden Council (500). Google are also
providing grant funding to The Prince’s Trust and INCO Academy via Google.org to ensure
that an additional 1,500 young people from underrepresented and disadvantaged
communities across the U.K. can take advantage of the training opportunity.
UK Living Wage Initiative: The Living Wage Foundation is an initiative that annually
calculates a minimum hourly living wage for the UK, and in London specifically. Google UK
worked with the Living Wage Foundation to certify the steps it takes to ensure Google UK
employees, suppliers, and vendors receive the correct living wage. Google UK is proud to
have earned accreditation as a Living Wage employer for the fourth year in a row. Google’s
accreditation is seen here and other accredited organisations can be viewed and searched
for here. - Equal opportunity
-
Equal opportunity
The UK Government requires organisations with 250 or more employees to publish and report specific
figures about their binary gender pay gap.
Refer to:
https://static.googleusercontent.com/media/diversity.google/en//static/pdf/Google_UK_2020_21_Binary_Gender_Pay_Gap_Report.pdf - Wellbeing
-
Wellbeing
Google provides access to workshops that can be incorporated into your own Diversity, Equity and Inclusion (DEI) initiatives such as the #IAmRemarkable workshops to empower women and underrepresented groups to speak openly about their accomplishments and inclusive Leadership Series to create belonging on your team through inclusive communication skills
Pricing
- Price
- £0 to £0 a unit
- Discount for educational organisations
- No
- Free trial available
- No