Thursday, September 19, 2024

Additional iOS data exfiltration enhancement: account level data sharing between Google Workspace apps and non-Google Workspace apps on or off

What’s changing 

Admins can now enable content sharing on personal Workspace accounts while preventing data sharing from corporate Workspace accounts on iOS devices.




Additionally, admins can now prevent data sharing from unknown sources (typically non-Google Workspace apps) to personal Workspace accounts on Gmail, Drive, Docs, Sheets, Chat, and more, by setting a managed configuration

The {customer_id} is a unique customer ID that’s assigned to your account. You can find it in your Admin console at Account > Account settings > Profile.



Getting started

  • Admins: Blocking sending of work data to personal apps, including all non-Google Workspace apps on the iOS share sheet, will be OFF by default and can be enabled at the OU level. These settings can be configured in the Admin console under Devices > Mobile and endpoints > iOS settings > Data Sharing. Visit the Help Center to learn more about data protection on iOS devices. Use this article in our Help Center to learn more about how to set up the managed configuration, go to set up iOS apps with managed configurations.

  • End users: Sharing of data between Google Workspace apps and non-Google Workspace apps depends on your admin configuration. If you’re unable to share data between apps, you may see a warning message. Visit the Help Center to learn more about how your iOS device is managed.


Rollout pace


Availability

Available for Google Workspace:
  • Enterprise Standard and Plus
  • Education Standard and Plus
  • Enterprise Essentials Plus
  • Frontline Standard
  • Cloud Identity Premium

Resources