Regulators in some of the more than 30 countries where the cars operated are looking into the issue.
Google’s Street View cars, which are well known for crisscrossing the globe and taking panoramic pictures of the city’s streets, collected the data. The company displays the pictures in its online street maps.
Google said it wants to delete the data as soon as possible. It disclosed the snafu in May, but said at the time that the information it collected was typically limited to “fragments” of data because the cars were always moving.
“It’s clear from those inspections that while most of the data is fragmentary, in some instances entire emails and URLs were captured, as well as passwords,” Google Vice President of Engineering and Research Alan Eustace said in a post on Google’s blog on Friday.
Google had deleted the data in countries where regulators had given it permission to do so, a Google representative said. The representative said there were investigations in other countries and that Google could not delete the data until the investigations were closed.
Google said it has appointed Alma Whitten as director of privacy for engineering and product management, and that the company was adding new internal procedures requiring engineering product managers to maintain a privacy design document that records how user data is handled.
Google also said it was enhancing its privacy training for engineers and other important groups within the company.
Collecting the WiFi data was unrelated to the Google Maps project, and was done so Google could amass data on WiFi hotspots that could help provide location-based services.
Google said collecting the additional data was a mistake resulting from a piece of computer code from an experimental project that was accidentally included.