Skip to content

Privacy and Data Handling Fresh

How Google handles data when you use SynthID verification through the Gemini App, including Workspace protections and retention policies.

Data Handling Overview

Personal Google Accounts

When you use SynthID verification with a personal Google account:

What Google Collects

  • Your uploaded file (for the verification request)
  • Your text prompts and conversation history
  • Basic usage data (timestamps, device info)

How Google Uses the Data

  • Immediate verification: Your file is analyzed for SynthID watermarks
  • Product improvement: Conversations may be reviewed by human annotators to improve Gemini quality
  • Not used for ads: Gemini conversation data is not used for advertising targeting

Important Privacy Note

Because personal account conversations may be reviewed by humans, do not share sensitive, confidential, or private information in Gemini conversations. This includes:

  • Personal identification documents
  • Financial records
  • Medical information
  • Confidential business documents
  • Private communications

Data Retention

Your conversation history is retained according to your Activity settings:

  • Default: Data is retained until you delete it or auto-delete triggers
  • Auto-delete options: 3 months, 18 months, or 36 months
  • Manual delete: Delete specific conversations or all activity at any time

Google Workspace Accounts

Workspace accounts have significantly stronger data protections:

Key Protections

ProtectionDescription
No model trainingWorkspace conversation data is NOT used to train or improve Google AI models
Enterprise agreementsSubject to Google Workspace data processing agreements and terms
Admin controlOrganization administrators control which Gemini features are available
Data sovereigntyData handling follows Workspace data residency and compliance settings
Audit capabilityUsage activity available in Workspace admin audit logs

Admin Configuration

Workspace administrators can:

  • Enable or disable Gemini features per user or organizational unit
  • Control Drive integration — allow or restrict Gemini access to Drive files
  • Manage extensions — control which third-party extensions users can access
  • Set policies — configure data retention and sharing policies
  • Review audit logs — monitor Gemini usage across the organization

Managing Your Data

View Your Activity

  1. Go to myactivity.google.com
  2. Filter by Gemini Apps to see verification history
  3. Browse conversations by date

Delete Specific Conversations

  1. In the Gemini App, find the conversation in the sidebar
  2. Hover over it (or long-press on mobile)
  3. Click the three-dot menu
  4. Select Delete

Delete All Activity

  1. Go to myactivity.google.com
  2. Select Gemini Apps
  3. Click Delete activity
  4. Choose: Last hour, Last day, All time, or Custom range
  5. Confirm deletion

Set Up Auto-Delete

  1. Go to myactivity.google.com
  2. Navigate to Activity controls
  3. Find Gemini Apps Activity
  4. Click Auto-delete
  5. Choose your preferred period:
PeriodBest For
3 monthsMaximum privacy — minimal data retention
18 monthsBalanced — keeps recent history available
36 monthsMaximum history — keeps conversations accessible longer

Pause Activity Saving

To stop Gemini from recording any activity:

  1. Go to myactivity.google.com
  2. Navigate to Activity controls
  3. Find Gemini Apps Activity
  4. Toggle OFF

WARNING

Pausing activity will disable Google Drive access in Gemini. You can still upload files from your device, but you cannot browse or select files from Drive.

Third-Party Extensions

If you use Gemini extensions (Maps, YouTube, Flights, Hotels, etc.):

  • Extension data may be sent to third-party services
  • Each extension has its own data handling policies
  • Review extension permissions before enabling them
  • Extensions can be disabled individually in Gemini settings
  • Workspace admins can restrict extension access for the organization

INFO

SynthID verification itself does not involve third-party extensions. The verification is processed entirely by Google's systems.

Privacy Recommendations

  1. Use Workspace accounts for business or sensitive verification tasks — they have stronger protections
  2. Set auto-delete to your preferred retention period
  3. Do not share sensitive files through personal Gemini accounts
  4. Review your activity periodically at myactivity.google.com
  5. Check extension permissions if you have third-party extensions enabled
  6. Delete conversations after documenting verification results if privacy is a concern

Data Handling Summary

ActionPersonal AccountWorkspace Account
File processed for verificationYesYes
Conversation saved to activityYes (unless paused)Yes (unless paused)
May be reviewed by humansYesNo
Used for model trainingPossibleNo
Subject to auto-deleteYesYes + admin policies
Can delete manuallyYesYes
Admin audit loggingN/AYes

SOP documentation for Google SynthID Verification.