In the Admin console, you can share data from your Google Workspace, Cloud Identity, or Essentials account with services in your organization’s Google Cloud Platform (GCP) account. You can access the shared data through the GCP Cloud Audit Logs.
What data is shared
These audit logs are shared with GCP:
- Groups Enterprise audit log
- Admin audit log
- Login audit log
If you have Enterprise, Education Standard or Plus, Voice Premier, or Cloud Identity Premium edition, the following logs are also shared with GCP:
- OAuth Token audit log
- SAML audit log
- Access Transparency audit log (Enterprise and Education editions only)
For more information, go to Google Workspace audit logging information.
Note: Data stored or processed in Google Cloud Platform services is subject to your organization's Google Cloud Platform Terms of Service.
Data retention
Shared data is available to Google Cloud’s Operations suite (formerly, "Stackdriver") at near real-time and retained according to the GCP Admin Audit log retention policy (which differs from the Admin Console retention).
When you turn off sharing, no new data is shared with GCP services, and any existing shared data follows the GCP Admin Audit log retention policy.
Share data with Google Cloud Platform services
-
Sign in to your Google Admin console.
Sign in using an account with super administrator privileges (does not end in @gmail.com).
-
On the Admin console Home page, go to Account
Account settings
Legal and compliance.
- Click Sharing options.
- To share data, click Enabled.
- To turn off sharing, click Disabled. No new data is shared with GCP services. Existing shared data is deleted according to the GCP Admin Activity Audit log retention period.
- Click Save.