Google Workspace’s new security feature scrambles your data before it’s uploaded
Data privacy and security are important aspects of our internet usage today. And with moreworkplaces adopting remote and hybrid workthan ever before, security is crucial. Google knows this and constantly updates its services to be as safe as possible. Last year the tech giant introduced client-side encryption in beta for Google Workspace. As promised, the feature is now stable and available to several Workspace services and supports multiple file formats.
With theannouncement, Google’s plan to enable client-side encryption across Workspace is closer to completion. A host of productivity tools like Google Drive, Docs, Sheets, and Slides, alongside many file formats, such as PDFs and Office files, are currently getting the feature. Google saysclient-side encryption for Meetwill leave the beta phase and become widely available in May. The company’s not stopping there, though, as it promises to introduce optional end-to-end encryption for all meetings later this year.
But why client-side encryption? Google says it uses the latest encryption standards for Workspace, keeping data safe both in storage and when being transferred between its facilities. But all this happens on Google’s servers, and the company could technically still get access to your files, which is not good if you need to work with sensitive data.
However, by adopting client-side encryption, you may encrypt all your sensitive information before uploading them to Google’s servers — that’s right, even Google can’t decipher it. In addition, client-side encryption gives you complete control of private encryption keys and the identity provider to access them. In other words, even if someone accesses your account and downloads your data, it will stay encrypted until you grant them the decryption keys.
Of course, the client-side encryption feature is optional and off by default, meaning that you or your company can choose to activate it or not. If you do enable it, you’ll have to choose a key access service partner from a list of six partners that Google says have tools built per its specifications — Flowcrypt, Fortanix, Futurex, Stormshield, Thales, and Virtru. If you don’t like any of those options, you could also build your own key service using Google’s API specifications.
Google’s new client-side encryption feature has started rolling out to Drive, Docs, Sheets, and Slides users, but it may take 15 days before you see it. It’ll be available to Enterprise Plus and Education Plus customers.
The note-taking app I should have used all along
Broader branding hints at wider paid-tier ambitions
Google is still searching for answers
Stop trusting big tech with your data
Putting verified names to APKs
It’s time to sniff out the culprit
