Beta update: Data Loss Prevention enforcement in Gmail is now instantaneous

What’s changing 

Today, we are announcing enhancements for the Data Loss Prevention for Gmail open beta, which are designed to improve usability without compromising sensitive data protections for Gmail. Once deployed, users will receive instant notifications on risks to applicable DLP policies prior to leaving their inbox, instead of having DLP rules evaluated after the message has already left the inbox. In addition to more timely user feedback, this capability, called synchronous DLP, helps educate users about the potential risk of leaking sensitive information. 
We’re also introducing a new action for DLP rules, “Warn”, which will notify users about potentially sensitive data while providing the option to send the message based on a user’s assessment of a risk. For added safety, the DLP service will scan messages one additional time after they leave the sender’s mailbox.

Who’s impacted

Admins and end users

Why it matters 

Data breaches are one of the most common and costly security issues facing organizations. Often these breaches originate from within an organization by unintentional or intentional actions by their users. Data loss prevention capabilities help prevent this exfiltration of data and helps guide users about what information to share. To help safeguard sensitive information, organizations can create and enforce policies that not only detect and block sensitive information from being shared, but educate users on what information sharing is or is not appropriate and how to be compliant with those guidelines. Specifically, data loss prevention rules can look for sensitive text stings, custom detectors, or predefined detectors in outgoing messages sent internally or externally. 
The latest update for data loss prevention rules in Gmail brings the experience in line with Google Drive and Google Chat, which are already adopted broadly by Google Workspace customers. You can refer to our Help Center for more information about data loss prevention in Gmail.

Additional details

Customizable warning messages
DLP rules can be configured to block the message, warn users about sensitive information, or quarantine the message. When sensitive information is detected, users will be shown a dialog box notifying them of the risk. Admins can now choose to customize the information shown to end users in these dialog boxes, including why their message was flagged, what they can do to unblock themselves, and links to additional resources to educate them further.
Example of a custom warning message
Continued asynchronous scanning of messages
While messages will now be scanned synchronously, messages will go through additional scanning asynchronously (after the message leaves the inbox) for an additional layer of protection. This includes messages that are sent automatically, such as auto-forward or scheduled send, and messages sent from non-Gmail clients.

Getting started

Admins:Data loss prevention in Gmail is available in open beta for select Google Workspace customers. These rules can be configured at the domain, OU, or group level. DLP rules can be enabled in Gmail in the Admin console under Security > Access and data control > Data protection. Note that with the new synchronous scanning, your end users will begin seeing dialog boxes related to these rules before messages leave the inbox. These will be displayed when using Gmail on the web and mobile.

Visit the Help Center to learn more about controlling sensitive data shared in Gmail. Note that you can modify existing DLP rules for Drive and Chat to also apply to Gmail. 

DLP events can be reviewed in the Security Investigation Tool or Security > Alert Center, if alerts are configured in rules.

We recommend selecting “Audit only” when you’re setting up a new rule in order to test and monitor its performance, or to passively monitor the environment without interrupting email flow for your users. There are no changes to the “Audit only” action with this update, they will continue to operate as usual.

End users: Depending on the data loss prevention rules configured by your admin, you may see a dialog letting you know that:

Your message is blocked: Your message contains information that cannot be shared — you’ll need to remove it in order to send your message.

Dialog in case of a blocked message

Your message contains sensitive information: Your message contains information that is sensitive, but can be shared — you can decide whether to send it or edit the message to exclude this information. Note that your admin will be notified about this activity.


Dialog in case of a warning

Your message contains sensitive information that requires review: Your message contains information that will need to be reviewed by an admin. You’ll have the option to submit it for review, and upon review it will be released for delivery or declined. You may receive a notification about the message being declined from delivery.


Example of a quarantine message

Rollout pace

Rapid Release and Scheduled Release domains: Gradual rollout (up to 15 days for feature visibility) starting on October 7, 2024

Availability

Available for Google Workspace:
Enterprise Standard, Enterprise PlusEducation Fundamentals, Standard, Plus, and the Teaching & Learning UpgradeFrontline StandardCloud Identity Premium customers

Resources

Gmail Q&A now available on iOS devices

What’s changing

Last month, we introduced a new way of searching your inbox with Gemini on Android devices. Starting today, this feature is also available on iOS devices, enabling you to ask Gemini questions about your inbox. Gmail Q&A can help you answer specific questions about your emails, show you unread messages or messages from a specific sender, summarize emails about a topic in your inbox, and even answer general questions from search, all without having to leave your inbox.

Who’s impacted 

End users 

Why it matters

We are excited to help users supercharge their productivity with the help of Gemini in Gmail. Users now have even more capabilities from Gemini to help users get more done during their day at their desks and now, on the go. 

Getting started

Admins: To access Gmail Q&A on Android, users need to have smart features and personalization turned on. Admins can turn on default personalization setting for their users in the Admin console. End users: Open Gemini in the Gmail app via the black Gemini star at the top right of your app or from a “summarize this email” chip. To start, Gmail Q&A can find information from your inbox. In the future, it will be able to find information from your Drive as wellNote: Gmail Q&A is currently available in English only.Visit the Help Center to learn more about Gemini in Gmail.

Rollout pace 

Rapid Release and Scheduled Release domains: Gradual rollout (up to 15 days for feature visibility) starting on October 3, 2024

Availability 

Available for Google Workspace customers with these add-ons: 
Gemini Business, Enterprise, Education, Education Premium Google One AI Premium 

Resources 

New Watermarking in Google Meet Helps Protect Your Meeting Content

What’s changing 

Google Workspace customers with a Gemini add-on can now watermark presented content and video feeds in Google Meet. Watermarking in Google Meet will appear as a subtle text overlay that displays the meeting code and the email address of the viewer over the shared content and video feeds of participants. Using a watermark can help discourage unauthorized copying and sharing, protecting both users’ video images and content shared during meetings. Hosts and co-hosts can turn on watermarking at any time in the meeting. Once watermarking is turned on, it shows on all participants’ screens.

Additional details

Watermarking is available  to meeting participants signed into a Google account using the latest Chrome browser, Android or iOS apps, or Google Meet hardware devices. Only participants using supported browsers and apps will see video feeds when watermarking is turned on. 
Additionally, watermarking cannot be used when recording a meeting or live streaming a meeting. If you turn on a recording during a meeting, you’ll see a dialog box notifying you that watermarking stops when recording starts.

Getting started

Admins: There is no admin control for this feature.End users: To turn watermarking, go to Host controls > Add a watermark. Visit the Help Center to learn more about how to apply watermarks to your meeting.
Host controls > Add a watermark

Rollout pace

Rapid and Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on October 3, 2024

Availability

Available for Google Workspace customers with these add-ons: 
Gemini Enterprise Gemini Education Premium AI Security AI Meetings & Messaging 

Resources