This document shows, how you can install the SoSafe Phishing Report Button add-in for Google if you use Gmail. 

Using the Phishing Report Button, all your employees can report suspicious emails as phishing attempts in their Gmail program. If the reported email was one of our phishing simulations, the user receives a message that they successfully detected our phishing attempt. If the reported email is not from us, the case will be automatically forwarded to your IT department for examination. The forwarding address can be chosen freely. If you have any questions, please contact us at any time.


  • Google Workspace
  • Google Workspace account with admin access.
  • A valid SoSafe license (talk to your Implementation Manager)


Install SoSafe Phishing-Reporting from the Google Workspace Marketplace:

During the installation process a pop-up will open, asking you to grant SoSafe Phishing-Reporting access to the data listed below. Fill in the checkbox and click on ALLOW to grant access and install the app.

After this a notification will appear: SoSafe Phishing-Reporting has been installed!

Whitelist the SoSafe Phishing-Reporting App

This step ensures that your users won’t see an Unverified App message inside Gmail.

Note: This step can only be performed once the app is rolled out to at least one user.

According to Google it may take up to 24 hours.

In Google Admin visit the  “App access control” page with the following URL:

Perform the following steps.

Step 1:

Click on Manage Third-Party App Access.

Step 2:

Click on Change access on SoSafe Phishing-Reporting App.

Step 3:

Change Access configuration to "Trusted".