To give users coverage in more places, Google Fi partners with select high-quality Wi-Fi hotspot providers. Learn about the Google Fi W+ network.
How W+ works
- If you’re eligible, your device automatically connects to hotspots in the Google Fi Wi-Fi network when available. In your network settings, these hotspots appear as “W+.”
- Google Fi regularly checks the quality of the W+ network. We use the network only if the connection meets our high quality standard.
How we protect your data
Encryption
When you use the Google Fi W+ network, your internet traffic is always encrypted. When you come in range of a W+ network, Google Fi automatically adds encryption with the Fi Virtual Carrier Network (VCN). This encryption provides protection for your online activity against hackers and other third parties. The Google Fi VCN enhances this protection by:
- Using a one-time token so that your online activity isn’t tied to your Google account or phone number
- Encrypting your online activity between your phone and Google Fi’s VPN servers
- Hiding your IP address
Your online activity is encrypted between your phone and the Google Fi VCN servers. Encryption keeps your data safe in transit, which means third parties can't intercept your data before it reaches our VCN servers. Broader traffic information, like data usage and connection duration, can still be seen by Google Fi and Wi-Fi providers.
Rotated identifiers
Hotspot providers and nearby Wi-Fi sniffers can see certain identifiers used by the underlying standard Wi-Fi network protocols. Sniffers are devices that monitor Wi-Fi traffic to gain network insights, like the number of devices connected to an access point.
To limit bad actors’ ability to track the physical movement of devices associated with these identifiers (refer to table below), Google Fi takes technical steps like rotating identifiers. These identifiers are pseudonymous. This means that they can’t directly identify you without first getting combined with another data set that’s not provided by Google Fi.
For example, without first getting paired with more information, like a photo, the 00:3e:e1:c4:5d:df Media Access Control (MAC) address can’t identify you. Wi-Fi providers don’t have direct access to other data sets and are under a legal agreement not to identify users outside of the identifiers provided.
The identifiers are:
Identifier |
Use |
Rotation frequency |
---|---|---|
Encrypted user ID included in the Extensible Authentication Protocol (EAP-TLS) |
To make sure you’re a Google Fi subscriber and can use the hotspot |
Rotates at least once every 12 hours |
Media Access Control address (MAC) |
Required for the Wi-Fi access point to send internet traffic to your device |
Randomizes and rotates every 12 hours |
Internet Protocol version 6 address (IPv6) |
Required for the Wi-Fi access point to send internet traffic to your device |
Rotated every 24 hours However, if you stay connected to the same Wi-Fi access point for more than 24 hours these can last up to 7 days |
Important: No other identifiers or personally identifiable information is shared with our providers. Nearby Wi-Fi sniffers also can’t see the other identifiers or personally identifiable information.
Legal agreements
Legal agreements exist between Google Fi and each W+ network provider. These agreements require hotspot providers to protect the already limited amount of personal information they can see. This means W+ network providers can’t sell or use your data for advertising.
You’re in control
To turn off automatic connection to W+:
- Open your device’s Settings menu Settings.
- Tap Network & Internet SIMs Google Fi W+ Connections.