Overview

• Google says the capability is generally available as of October 2, with a gradual rollout of up to 15 days that began on September 30.
• Access is limited to Google Workspace Enterprise Plus customers who have the Assured Controls add-on.
• Administrators will find the feature off by default and can enable it at the organizational unit or group level, while eligible end users have it on by default.
• Recipients who do not use Gmail receive a notification and open the message in a restricted Gmail view using a guest account, where they can also reply.
• Messages are encrypted on the sender’s device using keys managed outside Google, removing certificate exchanges and reducing IT complexity.