This page provides a high-level view of the compliance certifications and security controls that are supported by Gemini Enterprise Standard edition, Gemini Enterprise Plus edition, and NotebookLM Enterprise.
Certifications
Agentic AI Services formerly known as Agentspace, which are part of Gemini Enterprise Standard edition and Gemini Enterprise Plus edition, and NotebookLM Enterprise have the following certifications:
| Compliance certification | Gemini Enterprise Standard edition and Gemini Enterprise Plus edition | NotebookLM Enterprise |
|---|---|---|
| HIPAA | * | ✔ |
| FedRAMP | * | |
| ISO 27001, ISO 27017, ISO 27018, and ISO 27701 | * | ✔ |
| SOC 1, SOC 2, SOC 3 | * | ✔ |
| PCI DSS | * | * |
* Compliance certifications at Google Cloud are maintained through a structured internal process featuring regular independent audits for new and existing products. We have a long history of meeting certification requirements, including HIPAA, FedRAMP, ISO 27xxx, SOC reports, and PCI DSS. Gemini Enterprise Standard edition and Gemini Enterprise Plus edition are built on the same Google Cloud infrastructure as the product formerly known as Agentspace, and thus inherit a significant number of security and privacy controls from that service. Gemini Enterprise Standard edition and Gemini Enterprise Plus edition will be included in future certification audits.
Security controls
Gemini Enterprise Standard edition, Gemini Enterprise Plus edition, and NotebookLM Enterprise have the following security controls:
| Security controls | Gemini Enterprise Standard edition and Gemini Enterprise Plus edition | NotebookLM Enterprise |
|---|---|---|
| Data Residency (DRZ) | ✔ US and EU multi-region APIs only (see DRZ for limitations) 2 | ✔ US and EU multi-region APIs only (see DRZ for limitations) 2 |
| Customer-managed encryption keys: CMEK for Gemini Enterprise CMEK for NotebookLM Enterprise |
✔ US and EU multi-region APIs only 1, 2 |
✔ US and EU multi-region APIs only 1 |
| VPC Service Controls | ✔ 2 | ✔ |
| Access Transparency | ✔ US and EU multi-regions only 2 | ✔ US and EU multi-regions only |
1 Using external key manager (EKM) or hardware security module (HSM) with CMEK is in GA with allowlist.
2 Does not apply when Grounding with Google Search is enabled.
What's next
Learn more about Google Cloud compliance.