Common use of Site Controls Clause in Contracts

Site Controls. On-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit TV (CCTV) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Centre Security Operation. Google’s data centers centres maintain an on-site security operation responsible for all physical data center centre security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (“CCTV”) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center centre regularly. Data Center Centre Access Procedures. Google maintains formal access procedures for allowing physical access to the data centerscentres. The data centers centres are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center centre are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized authorised employees, contractors and visitors are allowed entry to the data centerscentres. Only authorized authorised employees and contractors are permitted to request electronic card key access to these facilities. Data center centre electronic card key access requests must be made through e-mailin advance and in writing, and require the approval of the requestor’s manager and the data center centre director. All other entrants requiring temporary data center centre access must: (i) obtain approval in advance from the data center centre managers for the specific data center centre and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center centre access record identifying the individual as approved. On-site Data Center Centre Security Devices. Google’s data centers centres employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized Unauthorised activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized Authorised access throughout the business operations and data centers centres is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers centres are alarmed. CCTV cameras are in operation both inside and outside the data centerscentres. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center centre building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers centres connect the CCTV equipment. Cameras record on on-site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 at least 7 days based on activity.

Site Controls. On-site Data Center Centre Security Operation. Google’s data centers centres maintain an on-on- site security operation responsible for all physical data center centre security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (“CCTV”) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center centre regularly. Data Center Centre Access Procedures. Google maintains formal access procedures for allowing physical access to the data centerscentres. The data centers centres are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center centre are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized authorised employees, contractors and visitors are allowed entry to the data centerscentres. Only authorized authorised employees and contractors are permitted to request electronic card key access to these facilities. Data center centre electronic card key access requests must be made through e-mailin advance and in writing, and require the approval of the requestor’s manager and the data center centre director. All other entrants requiring temporary data center centre access must: (i) obtain approval in advance from the data center centre managers for the specific data center centre and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center centre access record identifying the individual as approved. On-site Data Center Centre Security Devices. Google’s data centers centres employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized Unauthorised activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized Authorised access throughout the business operations and data centers centres is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers centres are alarmed. CCTV cameras are in operation both inside and outside the data centerscentres. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center centre building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers centres connect the CCTV equipment. Cameras record on on-site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 at least 7 days based on activity.

Site Controls. On-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (CCTV) cameras and all alarm systems. On-site security Security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (CCTV) cameras and all alarm systems. On-site security Security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require requires the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and operations (iii) and reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is are linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 90 days based on activity.

Site Controls. On-site Data Center Security Operation. Google’s The Data Importer's data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (CCTV) cameras and all alarm systems. On-site security Security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google The Data Importer maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, e- mail and require requires the approval of the requestor’s 's manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and operations (iii) and reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s The Data Importer's data centers employ an electronic card key and biometric access control system that is are linked to a system alarm. The access control system monitors and records each individual’s 's electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s 's job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 90 days based on activity.

Site Controls. On-site On­site Data Center Security Operation. Google’s data centers maintain an on-site on­site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site on­site security operation personnel monitor closed circuit Closed Circuit TV (CCTV) cameras and all alarm systems. On-site security On­site Security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site on­site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site on­site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-maile­mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; visit; (ii) sign in at on-on­ site security operations; operations; and (iii) reference an approved data center access record identifying the individual as approved. On-site On­site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site On­site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Centre Security Operation. Google’s data centers centres maintain an on-on- site security operation responsible for all physical data center centre security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (“CCTV”) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center centre regularly. Data Center Centre Access Procedures. Google maintains formal access procedures for allowing physical access to the data centerscentres. The data centers centres are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center centre are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized authorised employees, contractors and visitors are allowed entry to the data centerscentres. Only authorized authorised employees and contractors are permitted to request electronic card key access to these facilities. Data center centre electronic card key access requests must be made through e-mailin advance and in writing, and require the approval of the requestor’s manager and the data center centre director. All other entrants requiring temporary data center centre access must: (i) obtain approval in advance from the data center centre managers for the specific data center centre and internal areas they wish to visit; (ii) sign in at on-on- site security operations; and (iii) reference an approved data center centre access record identifying the individual as approved. On-site Data Center Centre Security Devices. Google’s data centers centres employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized Unauthorised activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized Authorised access throughout the business operations and data centers centres is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers centres are alarmed. CCTV cameras are in operation both inside and outside the data centerscentres. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center centre building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers centres connect the CCTV equipment. Cameras record on on-site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 at least 7 days based on activity.

Site Controls. This Section 2(a) describes only Google owned and operated data center site controls and not those of Third Party Subprocessors or Infrastructure Providers. On-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit TV (CCTV) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Centre Security Operation. Google’s data centers centres maintain an on-site security operation responsible for all physical data center centre security functions 24 hours a day, 7 days a week. The on-site security operation operations personnel monitor closed circuit Closed Circuit TV ("CCTV”) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center centre regularly. Data Center Centre Access Procedures. Google maintains formal access procedures for allowing physical access to the data centerscentres. The data centers centres are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center centre are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized authorised employees, contractors and visitors are allowed entry to the data centerscentres. Only authorized authorised employees and contractors are permitted to request electronic card key access to these facilities. Data center centre electronic card key access requests must be made through e-mailin advance and in writing, and require the approval of the requestor’s manager and the authorised data center directorcentre personnel. All other entrants requiring temporary data center centre access must: (i) obtain approval in advance from the authorised data center managers centre personnel for the specific data center centre and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center centre access record identifying the individual as approved. On-site Data Center Centre Security Devices. Google’s data centers centres employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized Unauthorised activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized Authorised access throughout the business operations and data centers centres is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers centres are alarmed. CCTV cameras are in operation both inside and outside the data centerscentres. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center centre building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers centres connect the CCTV equipment. Cameras record on on-site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 at least 7 days based on activity.

Site Controls. OnO n-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit TV (CCTV) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center regularly. Data D ata Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved. OnO n-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Centre Security Operation. Google’s data centers centres maintain an on-site security operation responsible for all physical data center centre security functions 24 hours a day, 7 days a week. The on-site security operation operations personnel monitor closed circuit Closed Circuit TV (“CCTV”) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center centre regularly. Data Center Centre Access Procedures. Google maintains formal access procedures for allowing physical access to the data centerscentres. The data centers centres are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center centre are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized authorised employees, contractors and visitors are allowed entry to the data centerscentres. Only authorized authorised employees and contractors are permitted to request electronic card key access to these facilities. Data center centre electronic card key access requests must be made through e-mail, in advance and in writing and require the approval of the requestor’s manager and the authorised data center directorcentre personnel. All other entrants requiring temporary data center centre access must: (i) obtain approval in advance from the authorised data center managers centre personnel for the specific data center centre and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center centre access record identifying the individual as approved. On-site Data Center Centre Security Devices. Google’s data centers centres employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized Unauthorised activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized Authorised access throughout the business operations and data centers centres is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers centres are alarmed. CCTV cameras are in operation both inside and outside the data centerscentres. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center centre building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers centres connect the CCTV equipment. Cameras record on on-site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 at least 7 days based on activity.

Site Controls. On-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit TV (CCTV) cameras and all alarm systems. On-On- site security operation personnel perform internal and external patrols of the data center regularly. Data Center Access ProceduresProcedures . Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Security Operation. Google’s 's data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit TV (CCTV) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s 's manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s 's data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s 's electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s 's job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

Site Controls. On-site Data Center Security Operation. Google’s The Data Importer's data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit Closed Circuit TV (CCTV) cameras and all alarm systems. On-site security Security operation personnel perform internal and external patrols of the data center regularly. Data Center Access Procedures. Google The Data Importer maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, mail and require requires the approval of the requestor’s 's manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and operations (iii) and reference an approved data center access record identifying the individual as approved. On-site Data Center Security Devices. Google’s The Data Importer's data centers employ an electronic card key and biometric access control system that is are linked to a system alarm. The access control system monitors and records each individual’s 's electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s 's job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 90 days based on activity.