Google Account
A Google Account is a user account that is required for access, authentication and authorization to certain online Google services. It is also often used as single sign-on for third party services.
Type of site | Single sign-on |
---|---|
Owner | |
URL | myaccount |
Usage
A Google Account is required for Gmail, Google Hangouts, Google Meet and Blogger. Some Google products do not require an account, including Google Search, YouTube, Google Books, Google Finance and Google Maps. However, an account is needed for uploading videos to YouTube and for making edits in Google Maps.
YouTube and Blogger maintain separate accounts for users who registered with the services before the Google acquisition. However, effective April 2011 YouTube users are required to link to a separate Google Account if they wish to continue to log into that service.[1]
Google Account users may create a publicly accessible Google profile, to configure their presentation on Google products to other Google users. A Google profile can be linked to a user's profiles on various social-networking and image-hosting sites, as well as user blogs.
Third-party service providers may implement service authentication for Google Account holders via the Google Account mechanism.[2]
Security
While creating a Google account, users are asked to provide a recovery email address to allow them to reset their password if they have forgotten it, or if their account is hacked. In some countries, such as the United States, the United Kingdom and India, Google may also require one-time use of a mobile phone number to send an account validation code by SMS text messaging or voice message when creating a new account.[3][4]
Google also offers a two-step verification option—for additional security against hacking—that requests a validation code each time the user logs into their Google account. The code is either generated by an application ("Google Authenticator" or other similar apps) or received from Google as an SMS text message, a voice message, or an email to another account.[5][6] Trusted devices can be "marked" to skip this 2-step log-on authentication.[7] When this feature is switched on, software that cannot provide the validation code (e.g. IMAP and POP3 clients) must use a unique 16-character alphanumeric password generated by Google instead of the user's normal password.[8][9]
Users who seek an even higher level of security protection, including users whose accounts could be attractive targets for hackers, such as celebrities, politicians, journalists, political activists and wealthy individuals, can opt-in to Google's Advanced Protection Program. This program requires the user to purchase two U2F USB keys — not for data storage, but for identity verification. The U2F keys are used to provide two-step verification during login. One is for backup purposes, in case the first is lost. The Advanced Protection Program includes further security measures to protect the user's account, such as restrictions on which applications the user can grant access to their account, and a more thorough identity verification process for regaining access to the account if the password is forgotten.[10]
On June 5, 2012, a new security feature was introduced to protect users from state-sponsored attacks. Whenever Google analysis indicate that a government has attempted to compromise an account, a notice will be displayed that reads "Warning: We believe state-sponsored attackers may be trying to compromise your account or computer."[11][12]
Activity tracking
The tool called 'My Activity' launched in 2016 - which supersedes Google Search history and Google Web History — enables users to see and delete data tracked by Google through the Google account. The tool shows which websites were visited using Chrome while logged in, devices used, apps used, Google products interacted with, etc. All information is laid out in a timeline-like layout. Users can choose to entirely disable tracking, or remove certain activities which they don't want to be tracked.[13]
Account blocking
Google may block an account for various reasons, such as "unusual activity"[14] or entering an age "not old enough" to own a Google account.[15] Reactivation is possible using web-forms, providing proof of identity through valid photo ID,[16] or a credit card payment of US$0.30. Other methods (such as sending a fax or uploading some requested document) may require human interaction and may take some "days or a couple of weeks" to be accomplished.[17]
Account deletion
On May 17, 2023, Google announced that, starting in December 2023, it may delete inactive accounts that had not been used or signed into for at least two years.[18][19]
References
- "Why Connecting your YouTube and Google Accounts Matters". YouTube Blog. March 24, 2011. Archived from the original on August 5, 2011. Retrieved August 6, 2011. Retrieved on August 5, 2011
- "About the Sign in Request Page". Archived from the original on July 13, 2015. Retrieved July 1, 2015.
- "Gmail sign up procedure". LatestCrunch.in. 2012. Archived from the original on July 16, 2012. Retrieved July 17, 2012.
- "I don't have a mobile phone, can I sign up?". Google. 2009. Retrieved July 8, 2009.
- "2-step verification : How it works". 2012. Archived from the original on July 15, 2012. Retrieved July 17, 2012.
- Fallows, James. "Hacked". Atlantic Monthly. Archived from the original on December 24, 2011. Retrieved December 26, 2011.
As email, documents, and almost every aspect of our professional and personal lives moves onto the "cloud"—remote servers we rely on to store, guard, and make available all of our data whenever and from wherever we want them, all the time and into eternity—a brush with disaster reminds the author and his wife just how vulnerable those data can be. A trip to the inner fortress of Gmail, where Google developers recovered six years' worth of hacked and deleted e‑mail, provides specific advice on protecting and backing up data now—and gives a picture both consoling and unsettling of the vulnerabilities we can all expect to face in the future.
- "More on 2-step verification". 2012. Archived from the original on May 25, 2012. Retrieved July 17, 2012.
- "Please Turn On Two-Factor Authentication". LifeHacker. August 8, 2012. Archived from the original on August 11, 2012. Retrieved August 14, 2012.
- "9 Google Apps Security Secrets For Business". informationweek.com. August 14, 2012. Archived from the original on August 15, 2012. Retrieved August 14, 2012.
- Gebhart, Gennie (January 22, 2018). "Google's Advanced Protection Program Offers Security Options For High-Risk Users". Electronic Frontier Foundation. Archived from the original on July 10, 2018. Retrieved July 17, 2018.
- "Google Online Security Blog". Official Gmail Blog. Archived from the original on June 9, 2012. Retrieved June 5, 2012.
- "Google to warn users of 'state-sponsored attacks'". Canadian Broadcasting Corporation. June 6, 2012. Archived from the original on June 6, 2012. Retrieved June 6, 2012.
- Eric Ravenscraft (June 29, 2016). "Google's New My Activity Page Lets You See and Delete All of Your Google Activity". Archived from the original on June 17, 2017. Retrieved May 26, 2017.
- "Gmail Help Section".
- "Google account help page".
- "Google accounts help page".
- "Google account help page". Archived from the original on January 15, 2013.
- "Google to delete inactive accounts starting December". The Express Tribune. Reuters. May 17, 2023. Archived from the original on May 17, 2023. Retrieved May 17, 2023.
- Toulas, Bill (May 21, 2023). "Google will delete accounts inactive for more than 2 years". Bleeping Computer. Archived from the original on May 21, 2023. Retrieved May 21, 2023.