Encrypt Message Content
When this policy is enabled, the “Encrypt Message Content” method will be enabled by default when composing new emails via the Trustifi add-in or web app.
When this policy is enabled in “strict” mode, the “Encrypt Message Content” method will be enabled and users cannot disable it. In “strict” mode, all emails sent using the email relay will have content encryption enabled by default.
Require Authentication
When this policy is enabled, the “Require Authentication” method will be enabled by default when composing new emails via the Trustifi add-in or web app.
When this policy is enabled in “strict” mode, the “Require Authentication” method will be enabled and users cannot disable it. In “strict” mode, all emails sent using the email relay will have multi-factor authentication enabled by default.
Authentication methods allowed
This policy allows admins to select which of the 4 possible authentication methods should be allowed to use in encrypted emails with MFA: (1) phone, (2) password, (3) email, (4) SSO. Note: The “Email” method is used as a default in cases where the recipient does not have a registered phone number. If this method is disabled then in those cases, the email will fail to send, and the sender will be notified.
Notify Sender about Blocked Recipients
When this policy is enabled, senders will be notified when a recipient has been blocked from accessing an encrypted email. Recipients may be blocked from accessing an encrypted email if they’ve failed to authenticate a certain number of times, or if the email is set to “Allow access only once”.
Attachments Encryption Policy
This policy dictates whether attachments should be automatically encrypted based on sensitive content found in files. There are 3 options to select from:
Encrypt from sensitivity threshold: Attachments will be encrypted if the content found within matches a score equal to or above the selected score.
Always encrypt attachments: Attachments in sent emails will always be encrypted
Never encrypt attachments: Attachments in sent emails will never be automatically encrypted unless a DLP rule is triggered
Allow Admin Policies Only
When this policy is enabled, all users under the plan will not be able to manually apply any protection methods (e.g. “Encrypt Message Content”) or change any advanced settings in the Trustifi add-ins or the web portal. Only plan-wide policies enabled by the admin team will apply to sent emails.
Allow Updating Messages
Allows senders to update the content and attachments of encrypted emails after they’ve been sent.
Allow Recalling Messages
Allows users to recall emails sent to internal recipients. This policy also allows to control the maximum time after sending (in hours) during which users are allowed to recall emails.
Note: The “Message Recall” function in Trustifi is only supported for O365 users.
Allow Downloading Encrypted Emails as EML
When this policy is enabled, recipients will be able to download encrypted emails as EML files
Send Encrypted Replies as Regular Emails
When this policy is enabled, replies to encrypted emails will be received as regular, unencrypted emails
Require authentication on replies
When this policy is enabled, all encrypted replies will require the recipient to undergo multi-factor authentication.
When this policy is enabled in “strict” mode users cannot disable it.
Block outbound emails to blocklisted recipients
Outbound emails sent to addresses or domains in your inbound global blocklist will be automatically blocked
Block outbound emails for attachments types
Emails containing the selected attachment types will be automatically blocked. You may choose any or all of the following:
Macros
Scripts
Executables
Block Inappropriate Content
Emails containing inappropriate content such as nudity, violence, and drug use (in text or picture form) will be blocked and quarantined. These emails can then be reviewed and released by an admin.
Block Malicious Content
Emails containing malicious content such as links and attachments will be blocked and quarantined (This feature cannot be disabled).
These emails can then be reviewed and released by an admin.
Notify Sender About Blocked Emails
When this policy is enabled, senders will be notified when their outbound emails are blocked or quarantined for any reason.
By clicking on the “Notification Options” link, a pop-up will open where the admin can define whether the sender should have the option to "request release" for the email, and to which address the request will be sent.
Retention Policy
Admins can decide how long their users’ emails and attachments will be retained in Trustifi’s secure servers. Once an email or attachment has passed the configured retention period, it will be permanently deleted.
The longest retention period allowed is 7 years.
Email expiration
To enable a default time of email expiration, click on the toggle next to “Email expires in” and set a number value in the “days” field.
This will set a default expiration times for all outgoing emails under your Trustifi plan.
After an encrypted email has reached its expiration time, it will no longer be available to the recipient and will be deleted from the sender’s email history.
Attachment expiration
To set an expiration time for attachments sent by your users, click on the toggle next to “Attachments Expiration” and set a number value in the “days” field.
Once an attachment reaches its expiration time, it will no longer be available to the recipient and will be deleted from the sender’s storage.
Track Links
When enabled, all links in sent emails will have tracking enabled so the sender can see if and when an email’s recipient has clicked on any of the links inside.
Email Open Tracking HTML
Adds a tracking pixel to monitor when recipients open and read standard emails.
Allow printing
Recipients will be able to print the content of the encrypted email