Page Summary

outlined_flag

• Google Public DNS follows the Google Privacy Policy and does not use personal data for ad targeting.

• Two types of logs are kept: temporary logs containing IP addresses and query details stored for 24-48 hours, and permanent logs with anonymized location data for aggregate analysis.

• Temporary logs are used for security, service improvement, and generating non-personally identifiable usage summaries.

• Permanent logs store aggregated, anonymized data like domain names, request types, geolocation (city or region level), and response codes for statistical analysis.

• Google may retain temporary log information longer than 48 hours solely for addressing security and abuse issues.

This document provides important information about the data that we collectwhen you use Google Public DNS, how long we store it, and how we use it. Youcan also read ourTerms of Service.

Our Commitment

We take your privacy very seriously. Google Public DNS adheres to theGoogle Privacy Policy. Moreover, Google does not use any personalinformation collected through the Public DNS service to target ads.

We do not correlate or associate personal information in Google Public DNSlogs with your information from use of any other Google service except foraddressing security and abuse.

Information that we collect

The information that we collect about your DNS queries is stored in two typesof logs, each detailed below:

• Temporary DNS Logs
• Permanent DNS Logs

Temporary DNS Logs

Temporary logs are the only logs that store both your IP address and your DNSquery. Specifically, the temporary logs include:

• the IP address of your device sending the DNS query
• the technical information collected for Permanent Logs (see below)
• for DNS-over-HTTPS (DoH): the Content-Type and Accept HTTP headers

These logs are subject to our deletion processes within 24-48 hours. They areonly used for the following reasons:

• to identify and mitigate security threats or activity that we deem abusiveor otherwise malicious,
• to fix, maintain, and improve Google DNS services, and
• to generate aggregate non-personally identifiable DNS usage summaries.

To address security and abuse issues, we may retain information from thetemporary logs for longer than 48 hours, in each case solely for the limitedpurpose of resolving such issues.

Permanent DNS Logs

The permanent logs are a sampling of the temporary logs where your IP addressis removed and replaced by a city or region-level location. Thus, thepermanent logs contain no personal information about you. The followinginformation is logged in the permanent logs:

• Requested domain name
• Request type (A ,AAAA ,NS,MX,TXT, etc.)
• Request Size
• Transport protocol (TCP,UDP,TLS, orHTTPS)
• Client's autonomous system number
• User's geolocation: country, region, and city (no more specific than 1 km²and 1000 users)
• DNS Response code
• Google DNS server information
• Timestamp
• Processing time
• Response DNS flags (includingAD,CD,DO,RD, andTC)
• Response size
• EDNS version
• EDNS option
• EDNS Client Subnet (ECS) (IP protocol and prefix length -- excluding theclient IP address)
• For DNS-over-HTTPS (DoH):
  • Version string corresponding to HTTP path (/dns-query or/resolve)
  • Response HTTP encoding, such asapplication/dns-message orjson

Previous Versions

You can seeall past versions of this policy.