In the Admin console, you can share data from your Google Workspace, Cloud Identity, or Essentials account with services in your organization’s Google Cloud account. You can access the shared data through the Google Cloud audit logs.
What data is shared
The following log events data is shared with Google Cloud:
- Groups Enterprise log events
- Admin log events
- User log events
If you have Enterprise Standard and Enterprise Plus, Education Standard or Education Plus, Voice Premier, or Cloud Identity Premium edition, the following log events data is also shared with Google Cloud:
- OAuth log events
- SAML log events
- Access Transparency log events (Enterprise Plus and Education editions only)
For more information, go to Google Workspace audit logging information.
Note: Data stored or processed in Google Cloud services is subject to your organization's Google Cloud Terms of Service.
Data retention
Shared data is available to Google Cloud’s Operations suite (formerly, "Stackdriver") at near real-time and retained according to the Google Cloud admin audit log retention policy (which differs from the Admin console retention).
When you turn off sharing, no new data is shared with Google Cloud services, and any existing shared data follows the Google Cloud admin audit log retention policy.
Share data with Google Cloud services
-
Sign in to your Google Admin console.
Sign in using an account with super administrator privileges (does not end in @gmail.com).
-
In the Admin console, go to Menu
Account
Account settings
- Click Sharing options.
- To share data, click Enabled.
- To turn off sharing, click Disabled. No new data is shared with Google Cloud services. Existing shared data is deleted according to the Google Cloud admin activity audit log retention period.
- Click Save.