Virideon
The Hub API Docs Security About Get a Demo
Legal · Compliance

Google API Disclosure

How Virideon accesses, uses, stores, and shares data received from Google APIs — and our affirmation of compliance with the Google API Services User Data Policy, including the Limited Use requirements.

Section 01Application identity

Virideon is an organizational intelligence platform that helps organizations connect, search, and reason across their own data sources, including content from Google Workspace. This page describes how Virideon handles data received from Google APIs when your organization connects a Google account, or when your Google Workspace administrator authorizes the Service.

Section 02Google APIs we access and why

We request only the access required to deliver features your organization has enabled. Depending on configuration, this may include:

Gmail
Reading messages and threads to make them searchable and to surface relevant context across your knowledge base; sending or drafting messages where you direct the Service to do so.
Google Drive
Reading files and metadata your organization makes available so they can be searched, summarized, and synthesized with other connected sources.
Google Calendar
Reading (and where enabled, writing) calendar events to provide meeting context, briefings, and scheduling assistance.
Google Chat
Reading messages and spaces your administrator makes available so chat history is searchable alongside other organizational knowledge.
Basic profile
Your name and email address, used solely to identify your account inside the Service.

We request the narrowest scopes necessary for the enabled features and do not request access to data we do not need.

Section 03How we use Google user data

We use Google user data solely to provide and improve the user-facing features of the Service that your organization uses. Examples include search across your organization's knowledge, surfacing related information, synthesizing answers from connected sources, and generating briefings.

To deliver persistent organizational memory, Virideon stores and indexes Google user data in our secured systems (including search, vector, and graph databases) for as long as your organization maintains the connection and its subscription. All such data is encrypted in transit and at rest, logically segregated per Customer, and stored on behalf of, and under the instructions of, the Customer that authorized access.

When access is revoked or your organization's subscription ends, we delete the associated Google user data — including raw content and every processed copy of it in our systems, plus derived artifacts representing Google user data — within 30 days. Backups containing such data expire within 90 days as part of our standard backup rotation.

Section 04What we never do with Google user data

Consistent with the Limited Use requirements of the Google API Services User Data Policy, Virideon affirms that information received from Google APIs is not:

  • used or transferred to serve advertising, including retargeted, personalized, or interest-based advertising;
  • used or transferred to determine creditworthiness or for lending purposes;
  • sold or transferred to data brokers, information resellers, or other parties;
  • used to train, fine-tune, or improve generalized or foundation artificial intelligence or machine-learning models, including large language models;
  • read by humans, except (a) with your or your organization's affirmative consent for specific data, (b) for security or abuse investigations, (c) to comply with applicable law, or (d) where the data has been aggregated or anonymized and is used for internal operations in accordance with applicable privacy requirements.

Where the Service uses AI to generate answers or briefings for a Customer, that processing is performed to provide the requested user-facing feature for that Customer and is not used to train generalized models for Virideon or any third party.

Section 05Revoking access

Your organization may disconnect a Google data source at any time through the Virideon platform. You may also revoke Virideon's access from your Google Account's security settings at myaccount.google.com/permissions. Deletion proceeds on the timelines described in Section 03.

Section 06Limited Use affirmation

Virideon's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Looking for the full picture?  The complete handling of all information we collect — including non-Google data sources, security posture, your rights under GDPR and CCPA, retention, and international transfers — is in our Privacy Policy. Questions about this disclosure can be sent to info@virideon.ai.