Google has announced that it is introducing client-side encryption (CSE) to help Gmail users on the web strengthen the confidentiality of their data.
In a blog post on Friday, the Tech Giant said that using client-side encryption in Gmail ensures sensitive data in the email body and attachments.
To further explain the ease of use, Google said, “Customers retain control over encryption keys and the identity service to access those keys.”
WHAT IS CLIENT-SIDE ENCRYPTION?
Client-side encryption (CSE) is a method by which you are able to encrypt data locally for the purpose of keeping it secure. This is a different type of encryption that doesn’t require any special software or hardware. It’s also referred to as “browser encryption.” Just like other types of data protection, client-side encryption can help prevent third parties from accessing your personal information.
Users who are not on Google Workspace Enterprise Plus, Education Plus, or Education Standard can’t use CSE for Gmail right now. This includes people who just have personal Google accounts or older G Suite Basic and Business subscribers.
Although it is disabled by default, administrators can turn on client-side encryption by going to the Security > Access and data control > Client-side encryption section of the Admin panel.
According to the Google CSE support page, administrators will have extensive control over who within their organisation has access to the keys and will be able to keep tabs on their encrypted information. End-to-end encryption, on the other hand, prevents even the administrators from accessing the encrypted files of the users.
![](https://i0.wp.com/innovation-village.com/wp-content/uploads/2022/12/1.gif?resize=708%2C701&ssl=1)
As you can see (in the screenshot) workspace users have an additional option when using the web version of Gmail. Clicking on a padlock icon will let them choose to turn on additional encryption for the message.
Google made it clear that once you activate CSE your emails won’t have some features, like multi-send mode, signatures, Smart Compose, translation, summaries, confidential mode, etc. In addition, CSE on Gmail prevents users from searching within the encrypted message body and prevents third-party extensions from seeing the plain-text contents of encrypted messages.
Google recommends that any businesses working with important intellectual property should take advantage of its client-side encryption, as well as companies working in “highly regulated” industries, such as the government, defence, aerospace, or financial institutions.
Client-side encryption is already available for Docs, Slides, Sheets, Drive, and Meet, but still in beta for Calendar. Google says client-side encryption will be added to its Gmail app for Android and iOS “in an upcoming release.
The client-side encryption feature isn’t exclusive to Gmail in the Google Workspace products. When Google released its new enterprise products last year, one of the features was the ability for business users to encrypt documents and spreadsheets stored in Drive.