Google announces that client-side encryption for Gmail is now in beta
Google revealed last week that it is expanding access to client-side encryption across a variety of its web platforms. Encryption is in beta and is now available for Google Workspace Enterprise Plus, Education Plus, and Education Standard.
Registrations are now open and until January 20, 2023. The beta program is not yet available for individual accounts.
“Google Workspace already uses the latest cryptographic standards to encrypt all data at rest and in transit between our facilities,” Google said in its announcement. “Client-side encryption helps strengthen the confidentiality of your data while helping to address a wide range of data sovereignty and compliance needs.”
Once administrators are accepted into the beta, the new encryption can be enabled through Admin Console > Security > Data and Access Control > Client-Side Encryption, and can be enabled at the domain, drive level organizational and group.
On the end-user side, users can simply click the padlock logo in an email, select “Additional Encryption” from the drop-down menu, and then compose and send their emails normally. However, the subject line and recipients are not encrypted. The body of the email, including embedded images, is encrypted, as are attachments.
The key advantage of client-side encryption is that it can be used with an organization’s own keys. Encryption also occurs before the email is sent or stored in the Google cloud; Not even Google can access the data, the company claims.
Administrators can also choose which users have access to the functionality.
Google suggests that any company working with important intellectual property should take advantage of its client-side encryption, as well as companies working in particularly regulated industries such as aerospace and defense, or government.
You can learn more about the beta and what it offers here.