Data Practices
Google Drive Data Handling
Last updated: February 2026
How We Handle Your Google Drive Data
When you connect Google Drive to Intuist, you choose exactly which files your AI agents can access. We process only the files you select, using them solely to power your agents' knowledge bases. This page explains our data handling practices in detail.
What We Access
File Metadata
File names, types, sizes, and folder structure to display your Drive contents within our platform.
File Content
Document content is accessed only when you explicitly select files for AI agent training or processing.
Authentication Tokens
OAuth tokens that grant limited, revocable access to your Google Drive. Stored securely and encrypted at rest.
We only access files you explicitly select. We never scan or index your entire Drive.
How We Process Your Data
AI Agent Training
Selected files are processed to create knowledge bases for your AI agents, enabling them to answer questions about your content.
Text Extraction
Documents are parsed to extract text content for indexing and retrieval by your agents.
Embeddings Generation
Text content is converted into vector embeddings for semantic search. Original file content is not stored after processing.
Real-Time Sync
When enabled, we periodically check for updates to your selected files to keep agent knowledge current.
Processing happens on secure, isolated infrastructure. Your data is never used to train our models or shared across accounts.
Data Security & Storage
Encryption
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). OAuth tokens are additionally encrypted with per-tenant keys.
Isolation
Each account's data is logically isolated. No cross-account data access is possible.
Minimal Storage
We store processed embeddings and metadata only. Original file content is not retained after processing.
Access Logging
All access to your Google Drive data is logged and auditable for security and compliance purposes.
Data Retention & Deletion
Processed Data
Vector embeddings and metadata are retained while the associated agent is active.
On Agent Deletion
When you delete an agent, all associated Google Drive data (embeddings, metadata, cached content) is permanently removed.
On Account Deletion
All Google Drive data, tokens, and processed content are permanently deleted within 30 days.
Token Revocation
Revoking Google Drive access immediately invalidates our access tokens and triggers deletion of all cached Drive data.
Your Data Rights
View Connected Files
See exactly which files are connected to each agent at any time.
Disconnect Files
Remove individual files from agent training, which deletes associated processed data.
Revoke Access
Revoke Google Drive integration entirely from your account settings or from Google's security settings.
Export Data
Request an export of all data we hold related to your Google Drive integration.
Scope of Access
Limited Scopes
We request only the minimum Google API scopes needed: file read access for selected files and basic profile information.
No Write Access
We do not request or use write access to your Google Drive. Your files are never modified.
No Sharing Changes
We never change sharing permissions or visibility settings on your files.
CASA Certified
Our Google integration has passed the Cloud Application Security Assessment (CASA) by TAC Security, a Google-approved assessor.
CASA Security Certification
Our Google Drive integration has been independently assessed and certified under the Cloud Application Security Assessment (CASA) program. This certification verifies that our application meets Google's security requirements for handling user data.
View CASA Certificate (PDF)How to Disconnect Google Drive
You can revoke Intuist's access to your Google Drive at any time:
- 1.Go to your Intuist account settings and disconnect Google Drive
- 2.Or visit Google Account Permissions and remove Intuist
- 3.All cached data and processed content will be deleted within 24 hours
For questions about your Google Drive data, contact us at [email protected]