por | Mai 1, 2024 | Noticias
What’s changing
Launching first to beta, we’re introducing data loss prevention rules for Gmail. Data protection rules help admins and security experts build a stronger framework around sensitive data to prevent personal or proprietary information from ending up in the wrong hands. This functionality is already available in Google Chat and Google Drive, and in Gmail you’ll be able to create, implement, and investigate rules in the same manner.
Admins can create data protection rules to flag sensitive information from using your organization. These rules are applied to outgoing messages sent internally or externally and admins can choose whether all content (including attached files and images), the body of the email, email headers, or subject lines should be scanned. You can configure your rules to look for sensitive text strings, custom detectors, or select predefined detectors. If a message violates a rule, admins can choose to:
Block message — the sender will receive a notification about message delivery failure and more information about the policy they violated.Quarantine message — the message will require review and approval by an admin before delivery. If the message is rejected by an admin, the user may receive a notification about it.Audit only — the message is delivered, but it is captured in
rule log events for further analysis. This is particularly advantageous because it allows admins to assess the impact of rules before introducing them to your end users.
Data loss prevention for Gmail are available for select Google Workspace customers (see the “Availability” section below) — no additional sign-up is required to use the feature.
Create data protection policies for Gmail alongside Drive and Chat
Build flexible conditions with selection of predefined and custom detectors of sensitive information
Set up a rule with Audit Only action applied to messages sent outside of organization. The severity level for event logging is set up to ‘Medium’ and alerting via Alert Center is turned on
Detailed information about the event in the Alert Center
Overview of DLP incidents in the Security Dashboard with further option to investigate audit logs in detail
Who’s impacted
Admins and end users
Why it’s important
In addition to detecting sensitive content, DLP in Gmail offers additional benefits such as:
Simplified deployment and data protection policies management with rules for Gmail, Drive and Google Chat unified into the same area and workflow.Advanced detection policies with flexible conditions, wide selection of predefined detectors for global and regional information types, custom detectors (Regular Expressions and word lists), targeting on specific parts of a message (header, subject, body). Granular configuration of policies scope, defining sender audiences (at domain, OU, and group levels) and recipient audiences (internal, external, both).Actions with various levels of restriction such as block delivery of message (Block), quarantine message for review (Quarantine), and log event for future audit (Audit only).Tools for incident management and investigation such as the Alert Center, Security Dashboard and Security Investigation Tool.
Additional details
How does DLP in Gmail compare to Content Compliance rules?
Content compliance in Gmail does offer similar functionality in that you can create rules to prevent messages that contain specific content from being sent. However, unlike DLP in Gmail, admins have no way to preview the impact of these rules before deploying them broadly.
Further, content compliance offers a variety of features that are better suited for filtering content. For example, you can:
Set up a metadata match on a range of IP addresses, and quarantine messages from IP addresses outside of the range.Route messages with content that matches specific text strings or patterns to a specific department, suited the best to process information.
Getting started
Admins: Data loss prevention rules can be configured at the domain, OU, or group level. DLP rules can be enabled in Gmail in the Admin console under Security > Access and data control > Data protection. Visit the Help Center to learn more about
controlling sensitive data shared in Gmail.Note that you can modify existing DLP rules for Drive and Chat to also apply to Gmail. DLP events can be reviewed in the
Security Investigation Tool or Security > Alert Center, if alerts are configured in rules.
We recommend selecting “Audit only” when you’re setting up a rule. When selected, messages that match the conditions of a rule will be delivered with the detection being logged. This allows you to rest new rules and monitor their performance, or to passively monitor the environment without interrupting email flow for your users.
Note on asynchronous and synchronous scanning: With DLP for Gmail, data protection rules are scanned asynchronously, which means that the message is blocked or quarantined after it leaves the sender’s mailbox and before being dispatched to the recipient. We’re working on the ability to scan data protection rules synchronously when a user hits “Send” in order to notify users about sensitive content before the message leaves their mailbox.
Please share your feedback on this feature with us — this will help us continue to improve the experience as we move through beta and toward general availability. You can share your feedback by selecting the “Send feedback” button located in the bottom left corner of your screen of any data protection related page in the Admin console.
End users: When configured by your admins, you’ll be notified if your message contains information that violates a DLP rule
Rollout pace
Rapid Release and Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on April 26, 2024
Availability
Available to Google Workspace:
Enterprise Standard, Enterprise PlusEducation Fundamentals, Standard, Plus, and the Teaching & Learning UpgradeFrontline StandardCloud Identity Premium customers
por | Mai 1, 2024 | Noticias
3 New updates
Unless otherwise indicated, the features below are available to all Google Workspace customers, and are fully launched or in the process of rolling out. Rollouts should take no more than 15 business days to complete if launching to both Rapid and Scheduled Release at the same time. If not, each stage of rollout should take no more than 15 business days to complete.
Customizable Home tab for Google Chat apps
Create Looker Studio reports from Google Sheets
Looker Studio enables users to quickly build interactive reports and dashboards, and starting today they can now be created directly from Google Sheets. More specifically, users can:
Pick which sheet or cell range to use in the generated report on Looker Studio. Transform the data in Sheets to an automatically generated Looker Studio report in a single click, and save and share the report with an individual or a team. The Looker Studio report remains connected to the Sheet, and can be refreshed to reflect data updates. | Rolling out to
Rapid Release domains and Scheduled Release domains now. | Available to all Google Workspace customers, Google Workspace Individual subscribers, and users with personal Google accounts. | Learn
how to create a Looker Studio report from Google Sheets.
Export Gemini data for users in your organization
Previous announcements
The announcements below were published on the Workspace Updates blog earlier this week. Please refer to the original blog posts for complete details.
External participants can now join Google Meet client-side encrypted calls
We’re enhancing the experience for client-side encrypted Google Meet calls to include support for inviting external participants, including users without a Google account. | Learn more about
external participants joining CSE Meet calls. Client-side encryption can now be selected as a data loss prevention condition
You can now use client-side encryption as a condition for a data loss prevention (DLP) rule. | Learn more about the
DLP rule. Seamlessly transfer between devices during a Google Meet call
Import data from Slack to Google Chat using CloudFuze
With the CloudFuze integration, you can move messages and memberships from Slack channels into Chat spaces. CloudFuze also imports data while maintaining historical timestamps to ensure users can start using spaces right where they left off. | Learn more about
Google Chat and CloudFuze.Get notified about application load failures for your Google Meet Hardware devices
Workspace Data Protection rules are now available for Gmail in Beta
Launching first to beta, we’re introducing data loss prevention rules for Gmail. Data protection rules help admins and security experts build a stronger framework around sensitive data to prevent personal or proprietary information from ending up in the wrong hands. | Learn more about
Data Protection rules.
Rapid Release Domains:
Scheduled Release Domains:
Rapid and Scheduled Release Domains:
For a recap of announcements in the past six months, check out What’s new in Google Workspace (recent releases).
por | Mai 1, 2024 | Noticias
What’s changing
Directly from the Admin console, admins can remotely set custom configs for managed iOS apps on end-user devices for their enterprise using Google Mobile Device Management. Managed configurations are applied using XML property lists and the same app can be configured differently across different domains, groups, or organizational units (OUs).
Adding a managed configuration for an app using XML information
Who’s impacted
Admins and end users
Why it’s important
Prior to this update, mobile app configuration was only available for managed Android devices. Beginning today, Workspace admins can use Managed App Configuration to set custom app configurations and deploy them to manage iOS devices across their organization. This gives admins the flexibility they need to create safety parameters that align with the various needs of users across their organization.
por | Mai 1, 2024 | Noticias
What’s changing
Getting started
Rollout pace
Rapid and Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on April 25, 2024. We anticipate rollout to take around six weeks to complete.
Availability
Available to all Google Workspace customers with Google Meet hardware devices
por | Mai 1, 2024 | Noticias
What’s changing
Google Drive is designed to work with keyboards, screen readers, braille devices, screen magnification, and more. Today, we’re excited to improve the accessibility of Google Drive by enabling first-letters navigation.
First-letters navigation enables users to quickly and easily navigate a list of items in Drive via keypress. Users can move focus within a file list in Drive by pressing the first letter(s) of the file’s name. Pressing the same letter again will navigate to the next item starting with that letter.
In order to support first-letters navigation on Drive, we are migrating the existing single-letter shortcuts on Drive to multi-key shortcuts.
Additional details
Starting today, you can begin opting into the new shortcuts immediately through a banner notification in Drive or by going to Drive > Settings > Keyboard shortcuts > Update now. On August 1, 2024, Drive keyboard shortcuts will be automatically updated to first-letters navigation for all users. Once shortcuts are updated, you will also be able to see shortcuts where applicable in menus and on hover in toolbars in Drive.
Getting started
Rollout pace
Availability
Available to all Google Workspace customers, Google Workspace Individual subscribers, and users with personal Google accounts
Resources
