how it works
Decrypt email before archiving
Many regulations require organizations to retain email for a set number of years (for example, HIPAA and SEC rules). If messages are encrypted on the desktop before sending, they will be stored in the archive in encrypted form.
Archiving encrypted email can complicate retrieval. To read a message, you need the correct private key to decrypt it. This means every private key must be backed up to guarantee future access to archived messages.
While key backups may be manageable for small teams, they become difficult at scale. Even with complete key backups, eDiscovery is challenging because searching message content typically requires access to all relevant private keys.
A more practical approach is to decrypt messages before they enter the archive. Using the CipherMail Gateway to decrypt email prior to archiving ensures that messages remain readable and searchable in the archive, without maintaining backups of all user private keys.