Gmail E2EE lands on mobile

Google has brought Gmail’s end-to-end encrypted email to its Android and iPhone apps for paid Workspace customers, closing a mobile gap that had persisted since the web rollout. (workspaceupdates.googleblog.com) Google said on April 9, 2026 that users can now compose and read these messages natively inside the Gmail app on iOS and Android, without a separate app or mail portal. Administrators still have to turn the feature on in the client-side encryption settings. (workspaceupdates.googleblog.com) In plain terms, client-side encryption means the organization, not Google, controls the keys that unlock the message. Google’s help pages say Workspace already encrypts mail in transit and at rest by default, but client-side encryption adds a layer that keeps decrypted content away from Google’s servers. (support.google.com, security.googleblog.com) Google first opened Gmail client-side encryption in beta in December 2022 and made it generally available on February 28, 2023 for eligible Workspace and education tiers. The mobile release extends that system to phones and tablets more than three years later. (workspaceupdates.googleblog.com, workspaceupdates.googleblog.com) The timing follows another Gmail encryption expansion on October 2, 2025, when Google said Workspace customers with client-side encryption could send encrypted messages to any email address, not just Gmail users in the same organization. Recipients outside Gmail can open those messages through a guest account flow instead of exchanging certificates or custom software. (workspaceupdates.googleblog.com) Google is pitching the feature at organizations with compliance and data-sovereignty requirements, including regulated industries and public-sector teams that need tighter control over who can access message content. Its security blog has framed client-side encryption as an added confidentiality and integrity layer for sensitive mail. (workspaceupdates.googleblog.com, security.googleblog.com) The catch is that this is not a consumer Gmail feature. Google’s April 2026 announcement applies to Gmail client-side encryption users, and outside reporting says the mobile capability is tied to Google Workspace Enterprise Plus with Assured Controls or Assured Controls Plus. (workspaceupdates.googleblog.com, computerworld.com) That leaves Gmail’s mobile apps looking more like a managed enterprise mail system than a mass-market privacy product. For companies already paying for Google’s highest-end controls, the change is that encrypted mail now works on the device employees actually carry. (workspaceupdates.googleblog.com, support.google.com)