Connor Group

Connor Group is implementing enhanced security controls to minimize the risks of sensitive information being sent by email for the Corporate Team.

Our current security control automatically encrypts all emails sent to anyone when sensitive information is detected in the contents of the message or its attachments.  

The enhanced security control will block the Corporate Team from sending emails to external recipients when these types of sensitive information are found in the content of the email or its attachments.  

1. Social Security Numbers (SSN)
2. Individual Taxpayer Identification Numbers (ITIN)
3. Drivers License Numbers
4. Bank Account or Routing Numbers
5. Credit Card Numbers
6. Passport Numbers

In Outlook, you may be shown a “Policy Tip” when authoring an email that violates the policy about sending sensitive information to external recipients.

If you don’t get the “Policy Tip” when writing your email, you may still get a “Message Blocked” message in your inbox if the email service finds sensitive information in your email when processing it.

You have three options for consideration, at your discretion:

1. Don’t send the sensitive information by email.   
   1. Instead, use a more secure and controlled method of sharing the data, such as a share in OneDrive or CG's "SnapSecret" tool. Training and support from IT will be available for this.
2. Override and send the email and provide a brief justification by overriding the policy to e.g., “Brandon approved sending these files to our benefits provider”.
3. Override and indicate that this occurrence was a false positive by overriding the policy and selecting the “This message doesn’t contain sensitive information” option.  

Overriding the automatic "block" of an email will not override the automatic encryption controls used for the same data types.  The email will still be encrypted for the recipient.