How to Encrypt an Email in Gmail

You don’t have to be a hacker to send Gmail encrypted emails because email security is something that concerns everyone. In this article, we explain how to encrypt an email in Gmail, and we also introduce Clean Email as the most convenient tool to help you organize your encrypted messages and further enhance your security.

What Is Email Encryption?

Encryption is the process of turning plaintext information into meaningless secret code, known as ciphertext. To decode ciphertext and transform it back into its plaintext form, the correct decryption key must be provided.

In the context of email communication, encryption is used for two different purposes:

Obviously, you want to encrypt your messages both in transit and at rest to keep them as secure as possible.

Is Gmail Encrypted?

Yes, Gmail encrypts all messages by default—both in transit and at rest to protect its users from hackers.

For in transit encryption, it uses something called TLS, or Transport Layer Security. TLS is a cryptographic protocol that’s used not only by mail services like Gmail but also various instant messaging and web applications.

Thanks to TLS, it’s impossible for an attacker to intercept a Gmail message and read it, such as by setting up a malicious Wi-Fi hotspot in a public area. The attack would see only meaningless secret code, and it would be impossible for them to decipher it.

As far as at rest encryption goes, Gmail uses the Advanced Encryption Standard (AES) algorithm to encrypt all data stored on its servers. The same algorithm is also approved by the U.S. National Security Agency (NSA) for top secret information, so you can rest assured knowing that your messages are protected well.

Thanks to TLS and AES being enabled by default, you don’t need to learn how to encrypt an email in Gmail to enjoy a solid level of protection, but that doesn’t mean you can’t go beyond it.

How to Enhance Gmail Message Security?

There are other ways how to send an encrypted email in Gmail, but they’re not enabled by default.

The users of Enterprise, Education Fundamentals, Education Standard, Teaching and Learning Upgrade, and Education Plus editions of Gmail can enable S/MIME for message encryption.

This advanced encryption technology is based on asymmetric cryptography, using a key pair consisting of one private key and one public key to ensure that nobody besides the intended recipient can read your messages.

You can enable hosted S/MIME from the Google Admin console:

  1. Log in to the Google Admin console.
  2. Go to Apple > Google Workspace > Gmail > User settings.
  3. Select the domain or organization you want to configure using Organizations.
  4. Enable S/MIME encryption for sending and receiving emails.
  5. Click Save.

Besides S/MIME, there’s also Gmail’s confidential mode. This special mode protects your privacy by making it impossible for recipients to forward, copy, print, and download your messages from Gmail.

To send a confidential message:

  1. Log in to your Gmail account.
  2. Click Compose.
  3. Click Turn on confidential mode in the bottom right of the window.
  4. Set an expiration date and passcode.
  5. Click Save.

While useful, Gmail’s confidential mode isn’t a bulletproof solution (and it doesn’t claim to be). For example, your privacy can still be compromised by someone taking a screenshot of your message and sharing it that way.

Third-Party Gmail Encryption Apps

There are many third-party apps that help encrypt Gmail attachments and messages. Such apps are often available as convenient web browser plugins. Examples include:

All three apps are built on OpenPGP, the most widely used email encryption standard in the world, so you can trust them to work just as intended.

Boost Your Gmail Security With Clean Email

Clean Email is an inbox organizer that can boost your Gmail security and privacy in two different but equally important ways.

Clean up your inbox with Clean EmailClean up your inbox with Clean Email

First, you can use Clean Email’s inbox organization features like Auto Clean and Unsubscriber to declutter your inbox:

Second, you can take advantage of Clean Email’s Privacy Guard to regularly check your Gmail address against known data breaches and security incidents.

Protect your inbox with Clean EmailProtect your inbox with Clean Email

Here’s how it works:

  1. Go to: https://app.clean.email/
  2. Sign in to Clean Email with your Gmail account.
  3. Select the Privacy Guard feature from the left pane.
  4. Privacy Guard feature in Clean EmailPrivacy Guard feature in Clean Email
  5. Check if your email address has been found in any breaches.

Privacy Guard uses data collected by the Have I Been Pwned (HIBP) project, one of the most comprehensive collections of database dumps and pastes containing information about billions of leaked accounts.

If you discover that your Gmail address has been compromised, then you need to take action immediately. You should assume that your password has been leaked and change it to a new one. If you’re using the same password elsewhere, you also need to address the fact that other websites and services may be compromised as well.

Ideally, you want to create a new, unique password for each website and service that is in some way connected to the compromised Gmail account. A password manager like Bitwarden can make this much easier.


FAQ

Why are some messages not encrypted?

Not all email services encrypt messages by default. Gmail fortunately does, but organizations still need to enable S/MIME manually for additional protection against threats like man-in-the-middle attacks. What’s more, S/MIME won’t work unless both parties support it.

Is Gmail confidential mode encrypted?

No, confidential mode in Gmail doesn’t turn on any additional encryption methods. Its purpose is to be a convenient way for users to improve their privacy.

How to encrypt Gmail attachments?

You can easily encrypt Gmail attachments using third-party apps like FlowCrypt, SendSafely, and Mailvelope, which use OpenPGP, a key-based encryption method for encrypting and decrypting data.

Try Clean Email for Free
*****4.4based on 1011 user reviews
Get Started
Clean Your Mailbox

Tools like Quick Clean and Smart Views to help you quickly clean out an overloaded inbox

Unsubscribe

Keep unwanted emails out of your Inbox by unsubscribing - even from email lists that don’t have an unsubscribe link

Keep it Clean

Automate repetitive with Auto Clean rules to archive emails as they become old or sort them into folders

Clean Email interface
Use filters to find emails you want to clean.Use filters to find emails you want to clean.
Groups of Emails
Groups of Emails
Unsubscribe Button
UnsubscribeUnsubscribe
Auto Clean Button
Auto Clean Step 1
ArrowAuto Clean Actions Example
Smart Views