Tell HN: Google deleted my spreadsheet, review request says file can't be found
"We're sorry. You can't access this item because it is in violation of our Terms of Service. If you feel this is in error, please request a review. Find out more about this topic at the Google Drive Help Center."
If I click the request a review I get:
"404. That's an error. Sorry, this item cannot be found or is not available."
This spreadsheet simply had metrics and domains. I find it near impossible it was violating any terms of service unless there is a shadow blacklist of domain names which somehow trigger a file being removed. And I'm left with no recourse to even request a review or get my file back?
I turned on airplane mode on my phone and was able to get an old cached copy, export was only possible as a PDF. So at least I have a slightly stale version of raw data that way.
Even as a paying customer, this is pretty embarrassing and there seems no recourse is possible?
50 comments
[ 2.4 ms ] story [ 129 ms ] threadI think, perhaps, the 404 you got was not for your file, but just a broken link to their review form. Is there some other manner you can find a different review button? This[0] implies you can click Share -> Request a Review, maybe try that?
[0] https://support.google.com/drive/answer/2463328?hl=en
The metrics were all domain name related, I also work for NameBio.com, the largest database of domain name sales. We also do a bunch of other things in the domain name space including owning icann accredited registrars.
My spreadsheets are full of domain names and metrics from all over the place.
If the business was not profitable enough to afford Excel, OpenOffice is an almost Excel feature parity FOSS alternative. Had that file been stored on a cloud drive and regularly backed up to local or alternative 3rd party backup solutions, this issue not only wouldn't have happened but it also would not have been able to happen.
Hindsight is 20/20. though. Don't store important documents on a cloud server that you have no backend access to without having a contract in place regarding the responsibilities of maintaining your data.
It is your responsibility as a business to understand what your legal, statutory and regulatory requirements are and then put those requirements into your service agreement or contract. Or ensure those requirements are configured as part of the deployment of the service.
Either way, it's not Google's responsibility to know what your requirements are. They can assume and develop features that support particular regulatory requirements. But it is the responsibility of the organisation doing business with Google to stipulate their requirements.
You decide what content is shared & with whom
The content you save on Google Docs, Sheets, & Slides is private to you, from others, unless you choose to share it. Learn how to share or stop sharing files in Google Docs, Sheets, & Slides.
Google respects your privacy. We access your private content only when we have your permission or are required to by law. With the Google Transparency Report, we share data about how the policies and actions of governments and corporations affect privacy, security, and access to information.
If you have a work or school account, your organization can review logs of actions taken by Google when accessing content. Learn how to view logs with Access Transparency. Learn how Google protects your organization's security and privacy.
Start by trying to get a log of accesses to the spreadsheet. Follow up with a California CCPA complaint.
[1] https://support.google.com/docs/answer/10381817?hl=en
No they aren't. The TOS and similar clearly spell out that they have automated checks for malicious content, copy-righted works (remember when Google drive was a popular piracy vector for a hot second?), CSAM, etc. It's not Google's fault you haven't read that, or that you are taking a support article about sharing docs with other people and incorrectly extrapolating that to the internal technical functionality of google docs. The very next sentence after talking about end to end encryption:
>Your Google Account comes with built-in security designed to detect and block threats like spam, phishing and malware. Your activity is stored using strong industry standards and practices.
What has likely happened is that one or some of those domains probably got hacked and are pushing malicious JS or something triggering Google to view them as malicious, so some security product looks at a spreadsheet full of "malicious" URLs and it got sent into the void for that.
This is a paid service. Google is more constrained than with a free service.
> We access your private content only when we have your permission or are required to by law.
They will claim that you gave them permission by acknowledging the TOS.
They specifically spell out themselves.
We really need to invert that responsibility.
Corporations are hiding behind their TOS and playing "gotcha" when it turns out that you haven't read the thing that nobody reads.
You can't trust them, your business is too small compared to the profit, they won't even care.
If you are paying for enterprise support (Google Workspace), you have a support path to address this with. If you don't have Google Workspace, well now you know why companies shell out for the enterprise product instead of playing fast and loose with the consumer tier SaaS services.
And before people jump at me for that being unreasonable, I'd counter argue that it's unreasonable to expect a company to pay a human to spend time helping you, when you only pay the company a few dollars, if that, per month.
But for situations that should be extremely rare, are extremely high impact, and (apparently) are not caused by user error, such as dropping user data because of some AI 'algorithm', there's no reason at all that that cost can't be amortized across the low-paying customer base. Most every other industry has some form of support cost amortization built into its pricing scheme. This is something Google should be able to handle, too.
It might be be a good idea to use a tool like Rclone to create a local copy of the data going forward. It allows you to download Google sheets as .xlsx files.
(I am not affiliated with Insync.)
Backups are there to protect you not only from technical failure, but also from mistakes and random bans from cloud providers.
It can both backup them locally and from cloud-to-cloud.
[1] https://github.com/rclone/rclone
They can and will delete it, surveil it, or tamper with it and you will have not practical recourse.
------------------------------
"Your file "<filename>" contains content that violates Google Drive's Phishing policy and hence, some features related to this file may have been restricted. If you think this is an error and would like the Trust & Safety team to review this file, request a review below.
---------------------------
I got access again. And now it's actually being reviewed. What a terrible experience, it disappears and is inaccessible for an entire work day with no recourse. Not sure if this post caused the review/notification.
I can guess why it happened, it's just fubar.
Use rclone to backup your Google Drive documents.
https://rclone.org/
Configure it so it will save the documents to disk in MS Office formats instead of just saving a link.
clearly not, its someone else's computer