Communications Security

Organisational mails

Applications that communicate to end-users do so from an organisational domain and organisational email account.

Warnings on external communication

Communication coming from outside the organisation needs to be clearly distinguishable from internal communication with warnings that the originating party is from outside the organisation. This includes electronic messages received...

Technical email security

IT components send emails to end-users using an email address ending in a top-level domain for which the organisation is legally responsible. Mailservers take measures to prevent the reception and...

Email forwarding

Automatic forwarding of email to external addresses is denied-by-default.

Encrypted connections

All data in transit is transferred over encrypted connections, using the encrypted versions of protocols or encapsulation of plaintext protocols over encrypted connections.