Google Workspace will have from now on more security controls and features for digital sovereignty compliance, as confirmed by the company. Thanks to all these innovations, companies and public organizations will have more tools to be protected against today’s increasingly sophisticated and large-scale cyberattacks.
Among the new security controls, focused on the Zero Trust approach, there’s AI sorting in Drive. With it, administrators will be able to use Artificial Intelligence models that protect confidentiality. These models will be customized exclusively for the company that uses them, so that they can automatically classify and label both existing files and those generated from the availability of this control.
In addition, Workspace will also feature enhanced data loss prevention (DLP) controls for Gmail. Workspace admins can, with Workspace, set criteria that must be met before a user can share sensitive content on Google Drive.
There will also be contextual data loss prevention controls in Drive, already available in Google Chat and Chrome as well. Now they’re coming to Gmail, so security teams can more easily control the sharing of sensitive information.
As for digital sovereignty controls, several enhancements to client-side encryption (CSE) will be coming into the suite. Among them, the compatibility with mobile applications in Google Calendar, Gmail and Meet; the ability to set CSE as default for certain organizations; support for guest access in Meet; the comments in Docs; and the opportunity for users to view, edit or convert Excel files.
When it comes to regional data residency and compliance controls, companies and organizations can now choose where they store their data at rest. With this novelty, available in tests since the end of this year, they will also be able to choose where their covered data is processed, whether in the EU or in the United States. Additionally, companies will be able to store a copy of their Workspace data in the country of their choice.
Other security enhancements are directly related to threat defense controls. Thus, Google Workspace will have protection of additional sensitive actions in Gmail, with more defenses based on AI to offer automated protection for more sensitive actions in Gmail. For example, email forwarding.
Be Required two-factor authentication required for various company accounts. Among others, those of administrator of resellers and of the main Google client companies. Your admin accounts will have to add 2-Step Verification as a requirement. With this, Google wants to reduce the number of administrator accounts hijacked by stolen passwords and not have two-step authentication activated.
