Google Strengthens Workspace With Zero-Trust and Digital Sovereignty

Google Strengthens Workspace With Zero-Trust and Digital Sovereignty

The News: Google announced in late August that it is adding several AI-backed features to cover zero-trust, digital sovereignty, and threat defense controls, as part of a series of enhancements to its Workspace platform. Largely developed in response to the continuing cybersecurity threats to commercial and public sector organizations, the new zero-trust controls include:

  • AI classification for Google Drive, which allows admins to use customizable, confidentiality-preserving AI models to classify and label their files
  • Enhanced data loss prevention (DLP) controls for Gmail, allowing admins to set conditions that must be met for someone to be able to share files through Drive
  • Context-aware DLP controls in Drive to allow security teams to better control the sharing of sensitive information around and outside the organization

The company also announced the release of enhanced controls for data, ensuring that companies can manage digital sovereignty issues as AI and cloud computing marches toward ubiquity.

You can read the post detailing the new security features on the Google Workspace blog.

Google Strengthens Workspace With Zero-Trust and Digital Sovereignty

Analyst Take: In response to growing cybersecurity threats that are often targeted at enterprise commercial and public sector organizations, Google announced three new zero-trust controls for Google Workspace. Zero-trust is a security framework requiring all users, whether in or outside the organization’s network, to be authenticated, authorized, and continuously validated before being granted or keeping access to applications and data. A zero-trust framework assumes that there is no traditional network edge; as such, networks can be local, in the cloud, or a combination of the above, with resources and workers located at any location.

Google noted in its press release announcing the features that in 2022, cybersecurity attacks grew 38%, with each data breach costing organizations an average of $4.4 million. Further, the growing scale and sophistication of these attacks are overwhelming the capabilities of legacy productivity solutions’ defenses. As a result, Google cited statistics that underscored the benefits of its cloud-native architecture rooted in zero-trust principles and augmented with AI-powered threat defenses.

Enhanced Security for Hybrid and Work-from-Anywhere Workforces

The zero-trust security model has become a vital part of reducing security risks for a distributed workforce, which, in addition to providing more flexibility and scalability than traditional office networks, also introduces more opportunities for cybercriminals to exploit weaknesses. Indeed, social engineering attacks, where cybercriminals create lures that are designed to get workers to inadvertently violate security protocols and best practices, can create massive security holes. Further, the prevalence of bring-your-own-device policies may also introduce additional vulnerabilities.

Threat defense controls already deployed in Workspace help customers prevent, detect, and respond to social engineering and other identity-based attacks before they emerge. Now, the announcement of Workspace’s new built-in controls, such as DLP and context-aware access (CAA), will help organizations tighten their security defenses. By enforcing context-aware DLP controls in Drive, administrators can set criteria, such as device location or security status, that must be met for a user to be able to share sensitive content in Drive. This new capability offers more granular controls to help prevent unintended data loss and will be available later this year in preview.

Similarly, by extending enhanced DLP controls to Gmail, these tools will help security teams control sharing sensitive information inside and outside the organization. Enhanced DLP controls are already available in Google Chat, Drive, and Chrome, and will be available in preview within Gmail later this year.

Google is also deploying Google AI to automatically and continuously classify and label data in Google Drive to help ensure data is appropriately shared and protected from exfiltration. System administrators will be able to use confidentiality-preserving AI models, customized uniquely for their organization, to automatically classify and label new and existing files in Drive. Data protection controls, such as DLP or CAA, can then be applied based on the security policy. This feature is now available in preview.

These tools will provide additional layers of security that increasingly are required to ensure network integrity and security, as well as the protection of valuable and sensitive corporate and personal data. Given the ease with which data can be shared or exposed through digital collaboration tools such as Workspace, enterprises should be incorporating these types of zero-trust tools, even if they introduce additional layers of user friction.

Deploying Digital Sovereignty Controls to Ensure Regulatory Compliance

Digital sovereignty, which refers to the rules and reference architectures that govern data residency (where data is stored); data jurisdiction (who has legal control of the data); data protection (the ability to store and process data securely); data independence and mobility (the ability to use, store and transfer data); and interoperability and portability (the ability to exchange and make use of data), has become extremely important to organizations that operate across multiple physical jurisdictions.

Due to the complex nature of managing digital sovereignty issues, Google also is introducing enhanced controls over data that help prevent third-party access to sensitive data; select the location of encryption keys; choose where data is stored and processed; and enforce regional support personnel access.

Managing digital sovereignty will continue to be a major issue, particularly as AI training and inference tasks continue to proliferate. Without the proper governance and controls in place, organizations may find themselves running afoul of regulations, thereby putting their operations and data at risk.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other insights from The Futurum Group:

Google Cloud NetApp Volumes Is Launched

Adults in the Generative AI Rumpus Room: Google, DynamoFL, and AWS

Google Search Generative Experience: Will Gen AI Impact Search?

Author Information

Keith Kirkpatrick is VP & Research Director, Enterprise Software & Digital Workflows for The Futurum Group. Keith has over 25 years of experience in research, marketing, and consulting-based fields.

He has authored in-depth reports and market forecast studies covering artificial intelligence, biometrics, data analytics, robotics, high performance computing, and quantum computing, with a specific focus on the use of these technologies within large enterprise organizations and SMBs. He has also established strong working relationships with the international technology vendor community and is a frequent speaker at industry conferences and events.

In his career as a financial and technology journalist he has written for national and trade publications, including BusinessWeek, CNBC.com, Investment Dealers’ Digest, The Red Herring, The Communications of the ACM, and Mobile Computing & Communications, among others.

He is a member of the Association of Independent Information Professionals (AIIP).

Keith holds dual Bachelor of Arts degrees in Magazine Journalism and Sociology from Syracuse University.

Related Insights
Is AI Ready for Real Work, or Are Enterprises Still Stuck in Experimentation?
July 4, 2026

Is AI Ready for Real Work, or Are Enterprises Still Stuck in Experimentation?

Most enterprises claim advanced AI maturity, but lack governance and deployment strategies. Leading organizations are moving from experimentation to measurable AI impact....
Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up
July 4, 2026

Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up

Qodo's 'Compliance as Code' framework automates enterprise AI compliance through PR checks, solving the data privacy and security gaps that plague manual reviews at scale....
Databricks AI’s GPU Reliability Push Exposes Hidden Risks for Large-Scale Training
July 3, 2026

Databricks AI’s GPU Reliability Push Exposes Hidden Risks for Large-Scale Training

Databricks AI reveals critical GPU reliability challenges in distributed training environments. Silent slowdowns and numerical corruption pose greater risks than visible failures, threatening model quality and compute efficiency at enterprise...
AI Code Review Hits a Wall: Why Speed Without Trust Risks Engineering Chaos
July 3, 2026

AI Code Review Hits a Wall: Why Speed Without Trust Risks Engineering Chaos

A survey shows 94% of engineering leaders use agentic AI coding tools, but 55% struggle with reliability and hallucinations—revealing a critical gap between development speed and production quality....
Brave's Browser Containers Raise the Bar for Privacy and Workflow Flexibility
July 3, 2026

Brave’s Browser Containers Raise the Bar for Privacy and Workflow Flexibility

As AI platform adoption accelerates to $181.3B projected market size, Brave's v1.92 release introduces native browser containers addressing data privacy concerns for 52.6% of enterprise decision makers managing multi-cloud AI...
Is Self-Healing ITOps Ready to Replace Manual Incident Response?
July 3, 2026

Is Self-Healing ITOps Ready to Replace Manual Incident Response?

LogicMonitor's AI-driven ITOps framework combines root-cause analysis with governed automation to reduce alert fatigue and accelerate issue resolution, as agentic AI reshapes enterprise infrastructure management....

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.