[ Also on InfoWorld: Larry Page letter highlights Google's conflicts. | Discover what's new in business applications with InfoWorld's Technology: Applications newsletter. | Download InfoWorld's "Data Loss Prevention Deep Dive" PDF guide for tips on keeping your company's sensitive data from falling into the wrong hands. ]
Google's Global Privacy Counsel Peter Fleischer answered some of the questions on Thursday, and again reminded CNIL that Google had asked on several occasions to meet to discuss privacy matters. He repeated that Google was not willing to halt the policy's introduction because the request came after a lengthy campaign informing users about the changes, and delaying introduction of the new rules would have confused users.
While Google said it rolled out the largest information campaign in its history to inform users about the policy changes, the company failed to provide the CNIL with figures about the effect of the campaign. Google was not able to provide unique visitor statistics for the dedicated privacy main site and its localized versions. Fleischer pointed out that the Google privacy site is only one of many different mechanisms Google uses to disseminate privacy information. Google was not able to explain why it could not provide statistics for the privacy landing page, since its London office is closed for the Easter holiday.
Google also failed to provide details of its data backup regime. The company was asked to explain why its policy says that it may not remove information from backup systems when the user asks for its deletion. While the company said it would delete users' personal information upon request, it said Google's backup and retention policies are set to take into account users' interest in security and business continuity.
When asked if this means that Google will actually delete data from all backups upon request after an additional period of time, Google responded: "Google has documented policies and processes covering deletion of user data from back-up tapes." It is impossible to provide an upper bound to the additional retention period needed to delete data from all backups, because that time varies from case to case, the company added.