SOC 3

Global | ALL INDUSTRIES

Like SOC 2, the SOC 3 report has been developed based on the Auditing Standards Board of the American Institute of Certified Public Accountants’ (AICPA) Trust Service Criteria (TSC). The SOC 3 is a public report of internal controls over security, availability, processing integrity, and confidentiality.

SSAE 18 / ISAE 3402 Type II

The AICPA created the Statement on Standards for Attestation Engagements No. 18 (SSAE 18) to keep pace with globally recognized international accounting standards.

SSAE 18 aligns closely with the International Standard on Assurance Engagements 3402 (ISAE 3402).

SSAE 18 and ISAE 3402 are used to generate a report by an objective third-party attesting to a set of assertions made by an organization about its controls. The Service Organization Controls (SOC) framework is the method by which the control of financial information is measured.

Google Cloud undergoes a regular third-party audit to certify individual products against this standard. Our SOC 3 reports for Google Cloud Platform and Google Workspace can be downloaded instantly.

GCP and Google Workspace SOC 3 reports may be requested via the Compliance Reports Manager. Potential customers can reach out to sales for more information.

Quick links

SOC Toolkit for Service Organizations

Google Cloud services in scope for SOC 3

Google Cloud Platform

Where we are simplifying the name of our service, we have also included its former name in parentheses

Access Approval

Access Context Manager

Access Transparency

AI Platform

AI Platform Data Labeling

AI Platform Notebooks

AI Platform Training and Prediction

Anthos Config Management (ACM)

Apigee

App Engine

AutoML Natural Language

AutoML Tables

AutoML Translation

AutoML Video

AutoML Vision

BigQuery

BigQuery Data Transfer Service

Binary Authorization

Certificate Authority Service

Cloud Asset Inventory

Cloud Bigtable

Cloud Billing

Cloud Build

Cloud CDN

Cloud Composer

Cloud Console

Cloud Console App

Cloud Data Fusion

Cloud Data Loss Prevention

Cloud Debugger (formerly Stackdriver Debugger)

Cloud Deployment Manager

Cloud DNS

Cloud Endpoints

Cloud External Key Manager (Cloud EKM)

Cloud Filestore

Cloud Functions

Cloud Functions for Firebase

Cloud Healthcare

Cloud HSM

Cloud Interconnect

Cloud Key Management Service

Cloud Life Sciences (formerly Google Genomics)

Cloud Load Balancing

Cloud Logging (formerly Stackdriver Logging)

Cloud Monitoring (formerly Stackdriver Monitoring)

Cloud NAT (Network Address Translation)

Cloud Natural Language API

Cloud Profiler (formerly Stackdriver Profiler)

Cloud Router

Cloud Run (fully managed)

Cloud Run for Anthos

Cloud Scheduler

Cloud SDK

Cloud Shell

Cloud Source Repositories

Cloud Spanner

Cloud SQL

Cloud Storage

Cloud Storage for Firebase

Cloud Tasks

Cloud Trace (formerly Stackdriver Trace)

Cloud Translation

Cloud Vision

Cloud VPN

Compute Engine

Connect

Container Registry

Data Catalog

Dataflow

Datalab

Dataproc

Datastore

Dialogflow

Document AI

Firebase Authentication

Firebase Test Lab

Firestore

Game Servers

GCP Marketplace

Google Cloud Armor

Google Cloud Identity-Aware Proxy

Google Kubernetes Engine

Hub

Identity & Access Management (IAM)

Identity Platform

IoT Core

Managed Service for Microsoft Active Directory (AD)

Memorystore

Network Service Tiers

Persistent Disk

Pub/Sub

Resource Manager API

Secret Manager

Security Command Center

Service Consumer Management

Service Control

Service Directory

Service Management

Speech-to-Text

Storage Transfer Service

Talent Solution

Text-to-Speech

Traffic Director

Video Intelligence API

Virtual Private Cloud (VPC)

VPC Service Controls

Google Workspace

Admin Console

Assignments

Calendar

Calendar API

Classroom

Cloud Identity

Cloud Search

Contacts

Contacts API

Currents

Docs

Drive

Drive Activity API

Drive Rest API

Forms

G Suite Migrate

Gmail

Gmail Rest API

Google Chat

Google Meet

Groups

Hangouts

Jamboard

Keep

Mobile Device Management

Sheets

Sheets API

Sites (Classic)

Sites (New)

Sites API

Slides

Tasks

Tasks API

Vault

Voice

Google Workspace Admin SDK

Alert Center API

Apps Email Audit API

Apps Script

Data Transfer API

Directory API

Domain Shared Contacts API

Enterprise License Manager API

Groups Migration API

Groups Settings API

Reports API

Reseller API

SAML-based SSO API

Communications

Business Messages

RCS Business Messaging

Rich Communication Services (RCS)

Spectrum Access System

SOC 1

Learn more

SOC 2

Learn more

Take the next step

Start building on Google Cloud with $300 in free credits and 20+ always free products.

Get started for free

Learn security best practices
See our best practices
Solve common problems
Watch security use-case videos
Work with a partner
See our security partners

SOC 3

Google Cloud services in scope for SOC 3

Google Cloud Platform

Google Workspace

Google Workspace Admin SDK

Communications

Related offerings

SOC 1

SOC 2

Take the next step