Posted by: Karen Goulart
CIO, Cloud computing, cloud security concerns, Data privacy, Google, Microsoft
Another week, another potential woe for the CIO?
Tuesday saw the long-awaited/speculated release of Google Drive, joining the world of such cloud storage service offerings as Dropbox and Microsoft’s SkyDrive. Google Drive offers 5 GB of free storage for documents, photos, videos and other data. Additional storage can be purchased for a monthly fee.
But simultaneously with the launch of Drive was the raising of red flags from companies questioning the privacy of data stored with Google. In a blog post about Google Drive, New York Times writer Quentin Hardy said the newspaper has already advised its employees not to use the service.
At issue is how customers’ information can be used. Critics were quick to note that Drive falls under Google’s much-scrutinized, all-encompassing terms-of-service agreement, which allows Google to view and use customer content for its own purposes. The most talked-about term in Google’s service agreement on blogs and in the news over the last couple of days is this one:
When you upload or otherwise submit content to our Services, you give Google (and those we work with) a worldwide license to use, host, store, reproduce, modify, create derivative works (such as those resulting from translations, adaptations or other changes we make so that your content works better with our Services), communicate, publish, publicly perform, publicly display and distribute such content. The rights you grant in this license are for the limited purpose of operating, promoting, and improving our Services, and to develop new ones.
But, as Nilay Patel, writer for website The Verge, points out in some detail, this doesn’t differ much from the terms of Google’s cloud storage service competitors. Its competitors just say it a little nicer. The bottom line, Patel rightly notes, is how comfortable you are with the inherent risks of putting your data into the cloud. Agreements are great, but accidents happen.
Google is always aiming for the enterprise, but experts speculate Drive will mostly appeal to SMBs and the single-consumer market. Still, for flag-wavers, this likely won’t lessen their concern. As IT execs well know, just because you didn’t buy it, doesn’t mean it won’t be used. Sure, there are plenty of cloud storage services out there, but the lure of Drive might be greater, based simply on name recognition. Maybe your users have Gmail or use GoogleDocs and won’t see the harm in trying to sync it all up in Drive. One would hope that most companies would have guidelines in place by now to stem the tide of this kind of shadow IT. And further, knowing these guidelines aren’t always adhered to, would have enough rapport with users that they know why the latest thing might not be the greatest thing for their company.
So, what do you think? Have you already put the brakes on Drive, or do you have a policy in place that (you hope) will prevent the adoption of rogue cloud storage? Is Drive being unfairly picked on just because it’s Google? I’d love to hear your take in the comments or in an email.