Wednesday, February 21, 2024

Google Using Gmail to Read Your Online Purchase Invoice Data to track your Purchase History

Google tracks every single purchase that you have made online in years if you have the receipts sent to your personal Gmail account.

The purchase records can be accessed through a page called Purchases, which shows a list of products that you have purchased using online services such as Amazon, Flipkart, Swiggy, and more.

Years before Google said they would stop collecting data through Gmail for ad targeting purchases, but according to the CNBC report, Google is still collecting much personal information behind the scenes.

If you have the invoices received through your Gmail account and then it extracts the information to list the products that you have purchased.

List of Purchases

When I have checked my account purchases, the above list contains all the purchases that I have made from Swiggy, Flipkart, Amazon, and more.

“To help you quickly view and keep track of your purchases, bookings, and subscriptions in one place, we’ve created a private destination that can only be seen by you. You can delete this information at any time. We don’t use any information from your Gmail messages to serve you ads, and that includes the email receipts and confirmations shown on the Purchase page,” said Google Spokesperson.

However, deleting the data is not simple; there are no options to select and delete all the data at once; you should go deleting one by one.

If you want to remove purchase, then need to open the particular purchase, and there you can “Remove Purchase” option, click on that shows a popup with option view Email, which takes you to the Email containing the receipt.


You need to delete the Email and then to remove the Email trash, to get the purchase removed from the list.

To check further, we placed an order in Swiggy, once the payment completed, Swiggy sends a receipt for order confirmation, once the Email received in Inbox, we can the order appears in the purchase list with status Accepted.


Once the order got delivered, a delivery confirmation email arrived from Swiggy, after that the status in the payment page changed from Accepted to completed. The service instantly reads the Email receipt and update the status.


It is still unclear why Google is pulling all the information and dumping them to purchases; the page doesn’t know by most of the people, “Google says it’s looking into simplifying its settings to make them easier to control.”

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Hackers Hosting Malware On Google Sites To Steal Data and Share It to the Remote Server

Hackers Nearby can Hijack Bluetooth Titan Security Keys – Google Replacing it for Free


Latest articles

Beware of VietCredCare Malware that Steals businesses’ Facebook Accounts

A new cybersecurity threat targeting Facebook advertisers in Vietnam, known as VietCredCare, has emerged....

Google Chrome 122 Update Addresses Critical Security Vulnerabilities

Google has recently unveiled Chrome 122, a significant milestone for the widely used web...

New Malicious PyPI Packages Use DLL Sideloading In A Supply Chain Attack

Researchers have discovered that threat actors have been using open-source platforms and codes for...

New Mingo Malware Attacking Linux Redis Servers To Mine Cryptocurrency

The malware, termed Migo by the creators, attempts to infiltrate Redis servers to mine cryptocurrency on...

Security Onion 2.4.50 Released for Defenders With New Features

Security Onion Solutions has recently rolled out the latest version of its network security...

VMware Urges to Remove Enhanced EAP Plugin to Stop Auth & Session Hijack Attacks

VMware has issued an urgent advisory to administrators to remove a deprecated authentication plugin...

LockBit Ransomware Members Charged by Authorities, Free Decryptor Released

In a significant blow to one of the most prolific ransomware operations, authorities from...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Live Account Takeover Attack Simulation

Live Account Take Over Attack

Live Webinar on How do hackers bypass 2FA ,Detecting ATO attacks, A demo of credential stuffing, brute force and session jacking-based ATO attacks, Identifying attacks with behaviour-based analysis and Building custom protection for applications and APIs.

Related Articles