Google Cloud Platform (GCP), is a suite of cloud computing services that run on the same infrastructure that Google uses internally for end-user products like Google Search, Gmail, YouTube, etc. It provides a reliable place to compute and store data and helps developers build, test, and deploy apps.
If you're new to cloud, check out the resources section to learn more.
Compliance requirements vary based on the types of data you will be using or storing in your GCP project.
GCP is suitable for Low, Moderate and High Risk Data and all GCP service offerings are available for use. There are plenty of native security products and capabilities available that help you secure your network, infrastructure, endpoint and data stored in GCP.
GCP is authorized for use with High Risk Data and Protected Health Information (PHI) ONLY when the GCP project is compliant with Stanford's Minimum Security Standards and Administrative Guide, as well as other regulatory requirements.
If you are using High Risk Data or PHI, you must complete a Data Risk Assessment if the datasets are new. For existing projects where data is being moved to GCP, a DRA is not needed. Additionally, for all projects, one of the following groups must manage your project:
From within GCP's Compliance Resource Center, you can easily find cloud services that are HIPAA-Compliant, as well as guidelines on how to protect your PHI data in the cloud.
Before you place your request for a new GCP project, you MUST obtain authorization from a valid approver for each Stanford Project-Task-Award (PTA) you plan to use.
Check valid approvers for a PTA you are planning to use prior to submitting your request. The approver you select will be required to confirm their approval once the request is submitted.
The PTA approver(s) must agree to accept all charges incurred until one of the following occurs:
Set up your new GCP project with the project creation request form. Upon completion of the form, it will take one to two business days for project provisioning.
Note: A naming convention is followed for GCP project names. When you fill the project creation form, it will automatically present a prefix for your project and you can choose the remainder of the project name.
Once your GCP project is created, you will receive a confirmation email. The email also provides you with a login link that takes you to your new GCP project using Single Sign-On (SSO).
Once you login to the GCP Cloud Console, you will be directed to the homepage of your projects. If you want to perform a task via the console, start here.
Individuals identified on the request form as primary and alternate technical contacts will be granted permissions as Project Editors and IAM Admins. Both can create resources in the GCP project and grant IAM permissions to others.
To begin building your project, consider using these top GCP products leveraged by Stanford. If you have any questions about these tools or would like to see sample solutions, reach out to the GCP account team.
In GCP, you only pay for what you use.
First, figure out how you want to run your application in Cloud, then use the GCP Price Calculator to understand estimated cost. Note that the university discount negotiated between Google and Stanford is not applied in this calculator.
If you have any questions around architecting in GCP or cost estimation for your project, please reach out to the Google Cloud account team for assistance.
You can view usage information on the Google Console under the billing section.
If you want to view previous billing information already charged to your PTA(s), use the UIT Billing Dashboard. For questions, contact the UIT Revenue Operations team.
If you want to view detailed breakdowns of each individual service, please contact the UIT GCP billing support team for billing export access in BigQuery.
Click image to enlarge
Copyright Stanford University. Stanford, California 94305.