Hi Everyone,
We've been using Sophos SPX for about 2 years now, generally it's been working well. However, we had, very early on, turned off automatic encryption for personal or financial data - due to the high rate of false positives, and left it up to our users (and training) to decide when something had to be encrypted. They would set the "Confidential" flag on the email to tell SPX to encrypt it.
They are not so good at doing that, and things that should be encrypted are not. I would like to know if there is a way to have SPX;
1. quarantine an email that should be encrypted but the Confidential flag was not set
2. send a notice to the user if they wanted the email encrypted or not
3. and based on their reply, either send the email encrypted or not.
I know 1 and 2 are possible, but what about 3?
I know you could quarantine all non-flagged emails that contain personal data, send a message to the user that they need to review whether or not the email needs to be encrypted then either set the flag or resend the message with a keyword that you can have to bypass the encryption, but thats a pain. Any plans to sorta "graylist" the outgoing potentially encrypted message based on sender feedback?
Thanks
This thread was automatically locked due to age.
