Google recently announced end-to-end encryption for the web version of Gmail. The feature allows users to send and receive encrypted emails inside and outside their domains.
The update involves client-side encryption or E2EE. When enabled, the security feature ensures that sensitive data from an email’s body and attachments cannot be decrypted by Google’s servers. The email’s header, subject, time stamps and recipient(s) are excluded.
Data encryption takes place in users’ browsers before being sent or stored in Google Drive’s cloud-based storage. Users can continue to use proprietary encryption tools if they so desire, the tech giant said.
End-to-end encryption is now available to users of Google Workspace Enterprise Plus, Education Plus and Education Standard. Applicable users can request a beta version until January 20, 2023. Applicants have to pass a Gmail CSE Beta Test to get access.
End-to-end encryption is not yet available for personal Google accounts or users of Google Workspace Essentials, Education Fundamentals, Frontline and Nonprofit. The same goes for legacy G Suite Basic and Business environments, Google said.