Google Workspace Client Side encryption allows you to secure Drive, Docs, Sheets, and Slides data with an external encryption key that Google servers cannot access. File content is encrypted in the browser before being sent to Google. Decryption requires explicit customer authorization on a per-file basis, and Google cannot unilaterally access file content.
This integration enhances security by giving administrators the ability to protect sensitive data stored and processed within Google Workspace, ensuring it’s encrypted and that only authorized users or systems can access the decryption keys.
This guide covers the integration of Google Cloud Workspace with ESKM.