You can now add or remove client-side encryption from Google Doc

Google has added the flexibility to add client-side encryption to an existing document or remove it from an already encrypted Doc. To add or remove CSE from a doc, go to File > Make a copy > Add/Remove additional encryption.

"This update gives you the flexibility to control encryption as your documents and projects evolve and progress," Google said in a blog post on Thursday.

The update is gradually rolling out to Rapid Release domains. For Scheduled Release domains, the feature will gradually roll out starting on April 6, 2023, with visibility for some users also taking up to 15 days. It will be available to Google Workspace Enterprise Plus, Education Standard and Education Plus customers.

For the unversed, Google Workspace already uses the latest cryptographic standards to encrypt all data in transit and at rest. Client-side encryption (CSE) goes beyond this, giving you direct control of encryption keys and the identity service you choose to access those keys. Your files are encrypted from end-to-end and between clients and Google cannot decrypt them.

"With CSE, customer data is indecipherable to Google, while users can continue to take advantage of Google's native web-based collaboration, access content on mobile devices, and share encrypted files externally. When combined with our other encryption capabilities, customers can add new levels of data protection for their Google Workspace data," Google says.

According to Google, client-side encryption is especially beneficial for organizations that store sensitive or regulated data, like intellectual property, healthcare records, or financial data. It can be enabled at the domain, OU, and Group levels by admins ( Go to Admin console > Security > Access and data control > Client-side encryption).

In a nutshell, CSE adds an extra layer of protection for your organization while addressing a broad range of data sovereignty and compliance requirements.