The Data Protection Act states that personal data shall be: “processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.”
This means that we need to be especially aware of the need to ensure the security and encryption of emails when they contain personal information and data.
Secure email involves sending information to trusted partners through a network of secure, encrypted servers. The secure email facility encrypts the contents of an email when it is sent. This encryption ensures that the email, if intercepted by anyone other than the intended recipient will be unreadable. Once the email reaches its secure destination it will be decrypted so that the intended recipient can read it.
With that in mind users should use the following:
- Microsoft Outlook to send encrypted emails, or
- Egress to send encrypted emails with attachments greater than 30MB in size