Gmail Now Supports End-to-end Encryption for Workspace Users on iOS and Android

Google is expanding the availability of Gmail end-to-end encryption (E2EE) to Workspace users on Android and iOS devices. This will allow Workspace users to send encrypted emails from their mobile devices, whether the recipient uses Gmail or not.

Gmail Client-side encryption (CSE) is available with Google Workspace Enterprise Plus with the Assured Controls or Assured Controls Plus add-on. Until now, Gmail CSE was only available on the web, adding encryption to the body of the email (including inline images and attachments) on top of TLS (Transport Layer Security) for communication with other email service providers. Now, Gmail CSE is also available on mobile, and Workspace users will need to toggle the ‘Additional encryption’ setting before sending their emails to use the security feature.

“For the first time, users can compose and read these E2EE messages natively within the Gmail app on Android and iOS. No need to download extra apps or use mail portals. Users with a Gmail E2EE license can send an encrypted message to any recipient, regardless of what email address the recipient has,” the Google Workspace team explained.

For Gmail mobile users receiving end-to-end encrypted emails, these messages will be delivered as regular emails. People using other email mobile clients, however, will be able to open encrypted emails in their web browser.

Gmail end-to-end encryption on mobile devices is rolling out first to Workspace accounts on the Rapid Release and Scheduled Release tracks. IT admins will first need to enable it in the CSE admin interface, however.