Email is the lingua franca of business today. It is the conduit that allows employees to share information, companies to work with partners, and increasingly, provides a way for companies and their customers to interact. Enterprises today deal with an ever-increasing number of email-related threats. Most are familiar with the problems of virus-infected email attachments and productivity-draining spam, but now companies must also address the threats posted by outbound email.

In this paper, we discuss the impact data protection regulations and standards such as PCI and the Office of Management and Budget Personally Identifiable Information Guidelines which place new constraints on how data is stored, processed, and transmitted over email.