"Google Workspace Adds Client-Side Encryption to Gmail and Calendar"

Google has recently expanded client-side encryption (CSE) support to additional products in its Workspace suite.  The security feature was already available on Drive, Docs, Slides, Sheets, and Meet.  The company announced that CSE is now also supported in Gmail and Calendar.  The company stated that they recognize sovereign controls are important to customers and have accelerated delivery of these encryption capabilities to support their customers in maintaining control over their data and meeting their regulatory compliance needs.  Google stated that users can now send and receive emails or create meeting events with internal colleagues and external parties, knowing that their sensitive data (including inline images and attachments) has been encrypted before reaching Google servers.  From a technical standpoint, Gmail and Calendar on Workspace already supported data encryption at rest and in transit by using secure-by-design cryptographic libraries.  Google noted that client-side encryption takes this capability to the next level by ensuring that customers have sole control over their encryption keys and, thus, complete control over all access to their data.  Google stated that client-side encryption, including for Gmail and Calendar, is available to customers worldwide who have Workspace Enterprise Plus, Education Standard, and Education Plus subscriptions.

Infosecurity reports: "Google Workspace Adds Client-Side Encryption to Gmail and Calendar"