Workspace data loss protection (DLP) for Gmail is now generally available

Google has announced the general availability of Data Loss Prevention (DLP) in Gmail, which helps organizations protect themselves from data exfiltration risks. DLP identifies, monitors, and controls the sharing of sensitive data through easy-to-apply data protection rules. These rules can detect sensitive content in outgoing messages, including body content, attachments, headers, and subject lines. DLP in Gmail offers a rich set of predefined detectors and flexible conditions, allowing organizations to tailor warning messages based on their data governance requirements. Content compliance rules can still be used for different purposes, such as evaluating inbound messages and routing them internally. DLP for Gmail is part of the Google Workspace ecosystem, providing unified tools for configuring, implementing, and investigating Data Loss Prevention incidents. Admins can configure DLP rules at the domain, OU, or group level, and review DLP events in the Security Investigation Tool or Alert Center. End users will be notified if their message contains information that violates DLP rules, depending on admin configuration. The rollout of DLP in Gmail is expected to take 1-3 days for feature visibility, starting on February 18, 2025. DLP is available to Google Workspace customers, including Enterprise Standard, Enterprise Plus, Education Fundamentals, and Cloud Identity Premium customers.