PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Google Roll Out Gmail Client-Side Encryption Beta for Some Workspace Users

The beta, announced in a blog post, makes 'sensitive data' and attachments unreadable even to Google. It's unclear if it will come to personal accounts, though.

Marco Marcelline
 & Marco Marcelline Contributor

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

Google has let businesses apply to test client-side encryption for Gmail. The beta, announced in a blog post, makes “sensitive data” and attachments unreadable even to Google. 

Workspace Enterprise Plus, Education Plus, and Education Standard customers are eligible to apply to use it until Jan. 20, 2023.

Once customers have successfully applied to use the feature, admins can enable it at domain, OU, and Group levels by visiting Admin console > Security > Access and data control > Client-side encryption. 

Users can add client-side encryption to any email by clicking the lock icon and selecting ‘additional encryption’, as evidenced below.

google gif

According to The Verge, the feature is not yet compatible for use with emojis, a signature, and Smart Compose. In fact, as seen in the gif above, when client-side encryption is enabled via the lock, those features become inaccessible. 

Google spokesperson Ross Richendrfer told The Verge in an email that it is possible to send encrypted emails to people who use other email clients such as ones from Microsoft or Apple.

Recommended by Our Editors

Google Will Soon Spot Fake Calls on Supported Android Phones
Google Will Soon Spot Fake Calls on Supported Android Phones
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts

Client-side encryption is already available for Google Drive, Google Docs, Sheets, and Slides, Google Meet, and Google Calendar (beta). 

There is a key difference between end-to-end encryption and client-side encryption. According to a help document from the company, client-side encryption gives administrators control over the keys and allows them to “monitor users’ encrypted files.” 

Explaining the feature, Google said: “Using client-side encryption in Gmail ensures sensitive data in the email body and attachments are indecipherable to Google servers. Customers retain control over encryption keys and the identity service to access those keys.”

The beta testing feature is not available to users with personal Google accounts, not users using Google Workspace Essentials.

PCMag reached out to Google to ask if the company had any plans to roll the feature out to personal Gmail users but did not immediately receive a response.

Google added client-side encryption to Drive for Workspace business users last year, before also rolling it out to Meet and launching the beta for Calendar.

About Our Expert

Marco Marcelline

Marco Marcelline

Contributor

I am interested in how technology and human rights intersect, and how technology shapes cultural trends. I have a master's degree in Investigative Journalism from City University London.

Read the latest from Marco Marcelline

Read full bio