Google has brought client-side end-to-end encryption for Gmail to the iOS and Android versions of its mobile app, extending a capability that was previously available only on desktop for Workspace users.
The update integrates the feature directly into the standard Gmail application on both platforms. Workspace customers no longer need to rely on separate web portals or additional software to compose or read encrypted messages while on the move. Messages protected with this client-side encryption can be sent to recipients using any email service. Those on Gmail see the content appear as part of a normal conversation thread, while users of other providers access it through a secure web link that requires no extra installation.
The rollout applies immediately to domains set for either rapid or scheduled releases. However, availability is restricted to organizations on the Enterprise Plus plan that also subscribe to either the Assured Controls or Assured Controls Plus add-on. These tiers target enterprises and public sector entities with stricter compliance requirements. Administrators must explicitly enable mobile client support for the encryption feature through the Workspace Admin Console before individual users can activate it.
To send an encrypted message, users tap a lock icon in the compose window and choose the additional encryption option. The rest of the process then follows the usual Gmail flow.
This development addresses a long-standing gap in Google’s Workspace encryption tools, which had left mobile users at a disadvantage compared to those working on computers. Yet the feature remains limited to higher-tier business plans, reflecting Google’s focus on regulated industries rather than broad consumer availability.
Questions about trust persist in some quarters. While Google stopped scanning consumer Gmail accounts for advertising purposes years ago, Workspace accounts have always operated under different rules that emphasize enterprise controls and administrator oversight. The introduction of true client-side encryption on mobile may ease concerns for security-conscious organizations, but it does not eliminate broader debates about data handling practices within Google’s ecosystem.
For many Workspace administrators and compliance teams, the change simplifies secure communication without forcing workflow detours. At the same time, the plan-level restrictions and admin gatekeeping underscore that this is very much an enterprise-oriented enhancement rather than a universal upgrade.
