Gmail Confidential Mode: What It Does and Doesn’t Do
Gmail’s confidential mode adds access controls to your emails: you can set an expiration date, require a passcode to open the message, and revoke access after sending. It sounds more secure than it is. The name is misleading — “confidential mode” doesn’t encrypt your email end-to-end. Google can still read the content. The recipient’s email provider can still scan it. What it does is add friction: the recipient can’t easily forward, copy, print, or download the message, and you can make it disappear after a set time.
How to Send a Confidential Email
- Compose a new email in Gmail (web or mobile app)
- Click the lock icon with a clock (turn confidential mode on/off) at the bottom of the compose window
- Set an expiration date: 1 week, 1 month, 3 months, or 5 years
- Choose whether to require a passcode:
- “No passcode” — the recipient opens the email normally
- “Standard passcode” — Gmail texts a passcode to the recipient’s phone (they must enter it to read the email)
- Click Save and send the email
The passcode option is useful if you want to verify the recipient’s identity. They receive a text with a code that they enter to unlock the message. If someone intercepts the email but doesn’t have the recipient’s phone, they can’t read it.
Revoking Access
Before the expiration date, you can revoke access to a confidential email. Go to Sent mail, open the confidential message, and click Remove access. The recipient will no longer be able to open it. This works even if they previously read it — they’ll see an “access revoked” message when they try to open it again.
The Limitations
Confidential mode is not encryption. The message is stored on Google’s servers and delivered through standard email infrastructure. Google can access the content. Law enforcement with a warrant can access it. The recipient’s email provider can see it if it’s delivered to a non-Gmail address.
The “no forwarding, copying, or downloading” restriction is client-side only. A determined recipient can bypass it by:
- Taking a screenshot
- Using a screen recorder
- Photographing the screen with another device
- Using browser developer tools to copy the text
Confidential mode prevents casual forwarding, not determined copying. If you need actual confidentiality, use encrypted communication instead.
When to Use It
Confidential mode is useful for adding a time limit to sensitive information — a password reset link, a temporary access code, or a document you want to expire. It’s also useful for preventing accidental forwarding in professional settings. It’s not useful for truly sensitive information that needs real encryption.
For Real Encryption: Use PGP or Signal
If you need actual end-to-end encrypted email, set up PGP encryption. FlowCrypt (a Gmail extension) makes this relatively painless. For messaging, use Signal. Neither of these is as convenient as Gmail confidential mode, but they actually protect the content of your communication rather than just adding a time limit and a speed bump.