Tag Archives: Security and Compliance

Google Vault support for client-side encrypted emails

What’s changing 

Vault now supports retention, search, and export of client-side encrypted emails. Note that admins can't preview the email body and attachments, including inline images — they’ll only be able to see the subject line, sender, and receiver. 


Google Workspace already uses the latest cryptographic standards to encrypt all data at rest and in transit between our customers and Google facilities. Client-side encryption helps strengthen the confidentiality of your data while helping to address a broad range of data sovereignty and compliance needs. Visit the Help Center for more information on client-side encryption and our original announcement regarding client-side encryption for Gmail


Getting started


Rollout pace 


Availability 

  • Available to Google Workspace Enterprise Plus, Education Plus, and Education Standard customers 
  • Not available to Google Workspace Essentials, Business Starter, Business Standard, Business Plus, Enterprise Essentials, Education Fundamentals, Frontline, and Nonprofits, as well as legacy G Suite Basic and Business customers 
  • Not available to users with personal Google Accounts

Resources 

Google Vault support for client-side encrypted emails

What’s changing 

Vault now supports retention, search, and export of client-side encrypted emails. Note that admins can't preview the email body and attachments, including inline images — they’ll only be able to see the subject line, sender, and receiver. 


Google Workspace already uses the latest cryptographic standards to encrypt all data at rest and in transit between our customers and Google facilities. Client-side encryption helps strengthen the confidentiality of your data while helping to address a broad range of data sovereignty and compliance needs. Visit the Help Center for more information on client-side encryption and our original announcement regarding client-side encryption for Gmail


Getting started


Rollout pace 


Availability 

  • Available to Google Workspace Enterprise Plus, Education Plus, and Education Standard customers 
  • Not available to Google Workspace Essentials, Business Starter, Business Standard, Business Plus, Enterprise Essentials, Education Fundamentals, Frontline, and Nonprofits, as well as legacy G Suite Basic and Business customers 
  • Not available to users with personal Google Accounts

Resources 

Google Workspace Updates Weekly Recap – December 23, 2022

New updates 


There are no new updates to share this week. Please see below for a recap of published announcements. 


Previous announcements


The announcements below were published on the Workspace Updates blog earlier this week. Please refer to the original blog posts for complete details.


Updated experience for exporting your organization’s data
We’re introducing new capabilities for exporting your organization’s data, giving our customers greater flexibility over managing their organization’s data export needs. | Available to Google Workspace Enterprise Plus, Education Standard, and Education Plus customers only. | Learn more


Google Voice Standard customers can assign phone numbers in other Voice countries in their region 
Google Voice customers on the Standard subscription in Canada, Europe and the US can assign phone numbers to any supported country in their region:
  • Customers in Europe can assign phone numbers in supported European countries
  • Customers in Canada and the US can assign phone numbers in both countries
This change gives our customers on the Standard SKU the flexibility to deploy Voice across the different countries they operate in within the same region. | Available for Google Voice Standard customers only. | Learn more.


More filter effects available for Google Meet
Google Workspace users can now access a variety of new filter effects on Google Meet on the web and mobile. These filters, such as loghead, strawberry, and working bunny, can help bring an element of fun to meetings. | Learn more


Quickly refine search results in Google Chat with search chips
We’re expanding an existing mobile feature to the web that helps you find exactly what you’re looking for much faster using search chips that filter your search results. | Learn more



Completed rollouts


The features below completed their rollouts to Rapid Release domainsScheduled Release domains, or both. Please refer to the original blog post for additional details.


Rapid Release Domains:


Rapid and Scheduled Release Domains:


For a recap of announcements in the past six months, check out What’s new in Google Workspace (recent releases).


Updated experience for exporting your organization’s data

What’s changing

We’re introducing new capabilities for exporting your organization’s data, giving our customers greater flexibility over managing their organization’s data export needs. These changes include the option to:

  • Export user generated content by organizational unit
  • Export user generated content by group

This update is available for Google Workspace Enterprise Plus, Education Standard, and Education Plus customers.

Who’s impacted

Admins


Why it’s important

Historically, data export has been limited to a customer’s full set of user generated content. However, we know our customers sometimes need a more frictionless experience for managing their data exports, especially as their business and compliance needs continue to evolve. By providing more granular and flexible export tools, our customers can retrieve the specific data they need, when they need it.


Getting started




Rollout pace


Availability


  • Available to Google Workspace Enterprise Plus, Education Standard, and Education Plus customers
  • Not available to Google Workspace Essentials, Business Starter, Business Standard, Business Plus, Enterprise Essentials, Education Fundamentals, Frontline, and Nonprofits, as well as legacy G Suite Basic and Business customers

Resources




Google Workspace Updates Weekly Recap – December 16, 2022

New updates

Unless otherwise indicated, the features below are fully launched or in the process of rolling out (rollouts should take no more than 15 business days to complete), launching to both Rapid and Scheduled Release at the same time (if not, each stage of rollout should take no more than 15 business days to complete), and available to all Google Workspace and G Suite customers.


Drive approvals available on Android and iOS apps

Google Drive users have had the ability to send an item for approval on the web since 2021. These approvers can comment, approve, or reject a request on a file. Starting this week, Drive approvals are now available on the Drive Android and iOS apps. | Available to Google Workspace Essentials, Business Standard, Business Plus, Enterprise Essentials, Enterprise Standard, Enterprise Plus, Education Plus, and legacy G Suite Business customers only. | Learn more.


New keyboard shortcuts for Google Sheets on Android

In continuing our mission to provide a top-class user experience on large screen devices, we’re releasing new and updated keyboard shortcut options on Android that better align with the Google Sheets web experience. | View the full list of shortcuts and learn more here. 


Additional functionality for storage management

Adding shared drive storage limits and shared drives IDs are now available as part of the new set of tools for managing storage. Please refer to our original announcement for more information. | Learn more.


Previous announcements

The announcements below were published on the Workspace Updates blog earlier this week. Please refer to the original blog posts for complete details.


Facet Enhancements for Cloud Search

It’s now easier to configure and use Cloud Search search filters and facets with multiple enhancements to our existing functionalities. With this launch, you can use the Cloud Search Query API to configure new additional capabilities. | Available to Google Cloud Search Customers. | Learn more. 


Easily format and display code in Google Docs

We’ve added a new smart canvas feature that makes this process much easier by enabling you to format and display code in Docs with code blocks. | Available to Google Workspace Business Standard, Business Plus, Enterprise Standard, Enterprise Plus, Education Standard, Education Plus customers and Nonprofits only. | Learn more. 


Email notifications from Google now available in the Alert Center

Admins routinely receive notifications from Google to inform them about important Google Workspace updates. Now when admins receive these notifications, they’ll also be captured in the Alert Center in the admin console. This will help make it easier for admins to stay on top of important communications from Google. | Learn more. 


Enjoy improved call performance with intelligent network switching in Google Voice

To ensure the best call experience, Google Voice now automatically switches ongoing calls between cellular data service and Wi-Fi when it determines that one network type will lead to better call quality. | Learn more.


Expanded language support for captions and translated captions in Google Meet

We’ve expanded language support for standard captions and translated captions in Google Meet. | Standard captions are available for all users. Translated captions are available for meetings organized by Google Workspace Business Standard, Business Plus, Enterprise Starter, Enterprise Standard, Enterprise Plus, Education Plus, and the Teaching and Learning Upgrade customers.| Learn More.


Client-side encryption for Gmail available in beta

We’re expanding customer access to client-side encryption in Gmail on the web. Google Workspace Enterprise Plus, Education Plus, and Education Standard customers are eligible to apply for the beta until January 20th, 2022. | Learn more.


Completed feature rollouts

The features below have finished rolling out to Rapid Release domains, Scheduled Release domains, or both. Please refer to the original blog posts for additional details.


Rapid Release Domains:


Rapid and Scheduled Release Domains:



For a recap of announcements in the past six months, check out What’s new in Google Workspace (recent releases).



More ways to prevent data exfiltration on iOS devices

What’s changing 

In 2020, we released several data exfiltration protections for iOS devices. Today, we’re announcing the next set of enhancements for data exfiltration protections for iOS. We’re expanding these security controls to give admins more ways to protect sensitive company data on iOS devices. 


Admins can now turn the following actions on or off for Google Workspace data: 
  • Copying Google Workspace files and data to personal apps 
  • Sharing Google Workspace data to personal accounts via AirDrop and the iOS share sheet 
  • Air Printing Google Workspace files 
  • Saving Google Workspace items to files with the iOS share sheet 
  • Saving Google Workspace images/videos to iOS photos 
  • Assigning items from Google Workspace to Contacts with the iOS share sheet. 


Who’s impacted 

Admins and end users 


Why it’s important 

This is the next step in ensuring we continue to enhance data protections for Google workspace data and how that information is stored, shared, and used across the iOS devices within your organization. Similar protections are already available on Android devices through Work Profiles


Getting started 

  • Admins: These settings can also apply to any OU level throughout the organization, to scale your policy settings to any iOS mobile device within your organization. These settings can be configured in the Admin console under Devices > Mobile and endpoints > iOS settings > Data Sharing. Visit the Help Center to learn more about data protection on iOS devices


  • End users: There is no end-user setting for this feature. Restricted actions are not shown or except for “Save to files”, in which case a dialog pops up notifying the user that this action is restricted. 

Rollout pace


Availability 

  • Available to Google Workspace Enterprise Standard, Enterprise Plus, Enterprise for Education, and Cloud Identity Premium customers. 

Resources 

Google Workspace Updates Weekly Recap – November 18, 2022

New updates 

Unless otherwise indicated, the features below are fully launched or in the process of rolling out (rollouts should take no more than 15 business days to complete), launching to both Rapid and Scheduled Release at the same time (if not, each stage of rollout should take no more than 15 business days to complete), and available to all Google Workspace and G Suite customers. 



Drag content from Google Slides into other apps on Android
Over the last several months, we’ve added numerous new features and functionality to products like Google Drive, Docs, Sheets, Slides, and Keep on Android devices. This week, we’ve launched the ability to easily drag text and image content from Google Slides into other apps on Android. | Learn more.

Improving drag & drop on the Google Drive Android app
Earlier this year, we launched drag & drop in Drive, allowing you to quickly upload files by dragging and dropping them into the app. This week, we’re improving this feature by enabling you to also drag & drop files and folders around in your Drive to move their location as you see fit. This can be done either in the two-window view or in the single app view. | Learn more


Full mouse support now available on Google Docs Android App
Expect full mouse support while using Google Docs on Android that will mirror mouse behavior on the web. For example, clicking and dragging across text will now select that specific text instead of panning the entire document. 


Previous announcements


The announcements below were published on the Workspace Updates blog earlier this week. Please refer to the original blog posts for complete details.



Concentrate or disconnect with scheduled Do Not Disturb on Google Chat
You can now set a recurring schedule so you are not disturbed by Chat notifications on web, Android, and iOS. | Learn more


Use Access Approvals to control data access during support or maintenance 
This week, we introduced Access Approvals, which builds on Access Transparency and Access Management. Access Approvals allows customers to explicitly approve or deny Google employees access to data during support and general maintenance. Access approvals will be rolling out over the course of the next several weeks. | Access Approvals is part of Google Workspace Assured Controls, which is available as an add-on for Google Workspace Enterprise Plus customers only. For more information, contact your Google account representative. | Learn more.


New Consolidated Controls Page for Google Takeout
Beginning November 15, 2022, admins can manage Takeout settings from a new consolidated controls page, located at Admin console > Account > Google Takeout > User access to Takeout for Google services. We anticipate the new page to be fully rolled out within the next few weeks. | Learn more


Sharing suggestions in Google Drive make collaborating easier
We've made it easier to share files with the people you typically share with in Google Drive. With this feature, suggested recipients will appear in the sharing dialog to speed up collaboration across your organization. | Learn more



For a recap of announcements in the past six months, check out What’s new in Google Workspace (recent releases).

New Consolidated Controls Page for Google Takeout

What’s changing 

Beginning November 15, 2022, admins can manage Takeout settings from a new consolidated controls page, located at Admin console > Account > Google Takeout > User access to Takeout for Google services. We anticipate the new page to be fully rolled out within the next few weeks. Once the new page is fully available, the previous Takeout settings page—located at Admin Console > Apps > Additional Google Services > Google Takeout—will no longer be available. 


Once the rollout is complete, admins can modify Takeout settings from the new consolidated controls page, as well as from additional service setting pages for services with an individual Takeout control (see here for a list of those services: Allow or block Google Takeout for users). 



Who’s impacted 

Admins 


Why it matters 

Admins can now specify which services users are allowed or not allowed to export data from via Google Takeout all from one place in the Admin Console.


Getting started 



Rollout pace 



Availability 

  • Available to all Google Workspace customers, as well as legacy G Suite Basic and Business customers 


Resources 

Use Access Approvals to control data access during support or maintenance

What’s changing 

Today, we’re introducing Access Approvals, which builds on Access Transparency and Access Management. Access Approvals allows customers to explicitly approve or deny Google employees access to data during support and general maintenance. Access approvals will be rolling out over the course of the next several weeks.


We’ve designed our systems to limit the number of employees that have access to customer data and to actively monitor the activities of those employees. Access Approvals allows our customers to set up granular controls—at an organizational unit or admin group level—to require explicit permission for Google to access covered content for a limited time period.




Who’s impacted 

Admins 


Why it’s important 

Access Approvals provides admins granular control over how Google accesses that data when support requests are initiated or maintenance is being performed. Critically, this gives customers the ability to approve or decline access on individual requests. 


We know it’s essential that our customers have visibility and control over their systems and how they’re accessed by Google. This update, along with Sovereign Controls for Google Workspace, Client-side encryption, data regions, and Access Management capabilities, provide solutions for our customers to reach their digital sovereignty goals. 


Getting started 


Rollout pace 


Availability 

  • Access Approvals is part of Google Workspace Assured Controls, which is available as an add-on for Google Workspace Enterprise Plus customers only. For more information, contact your Google account representative. 

Resources 

Google Workspace Updates Weekly Recap – November 11, 2022

New updates 

Unless otherwise indicated, the features below are fully launched or in the process of rolling out (rollouts should take no more than 15 business days to complete), launching to both Rapid and Scheduled Release at the same time (if not, each stage of rollout should take no more than 15 business days to complete), and available to all Google Workspace and G Suite customers. 



Easily assign Tasks from Google Docs on mobile
Earlier this year, we made it easier for you to assign Tasks from Google Docs. This enables you to assign a checklist item to yourself or a colleague that will then show up in the assignee’s Tasks list. When edits are made to an assigned item in Tasks, such as a change to the title, due date or completion state, those updates will show in the Doc, and vice versa. We’re excited to announce that this is now available on the Docs Android and iOS apps. | Learn more here and here.



Previous announcements


The announcements below were published on the Workspace Updates blog earlier this week. Please refer to the original blog posts for complete details.



The new Gmail user interface is becoming the standard experience
At the beginning of 2022, we announced a new user interface and a customizable, integrated view for Gmail, bringing critical applications like Gmail, Chat, and Meet in one unified location. Starting this month, this user interface will become the standard experience for Gmail, with no option to revert back to the “original view.” With the new UI, users are still able to change their Gmail theme, inbox type, and more through quick settings. | Available to Google Workspace Business Starter, Business Standard, Business Plus, Enterprise Essentials, Enterprise Standard, Enterprise Plus, Education Fundamentals, Education Plus, Frontline, and Nonprofits, as well as legacy G Suite Basic and Business customers only. | Learn more.



Trust rules in Google Drive now generally available
In July 2022, we announced an open beta for trust rules in Google Drive. Beginning today, this feature will become available for eligible Google Workspace customers. Trust rules give admins more control over how files can be shared, both within and outside of their organization. For example, admins can limit what specific departments can access versus other parts of their organization. See our original announcement for more information. | Available to Google Workspace Enterprise Plus, Enterprise Standard, Education Plus, and Education Standard customers only. | Learn more



Use Key Migration to change or add key services for Client-side encryption
As we continue to expand Client-side encryption (CSE) across Google Workspace products, we’re introducing Key Migration which allows admins to enable additional key services or change their existing key service. In both cases, built-in controls ensure key migrations are performed safely, with support for backup key services and potential roll backs. These ensure encrypted data remains inaccessible to Google and fidelity is maintained through the migration process. | Available to Google Workspace Enterprise Plus, Education Standard, and Education Plus customers only. | Learn more


For a recap of announcements in the past six months, check out What’s new in Google Workspace (recent releases).