I’d love to hear more here.
Jon Busby
1

The test is “how would we react if this was leaked publicly”? If we wouldn’t want it to be available publicly then we encrypt the emails, even if they’re just internal. Examples of such emails are discussing a particular team member’s performance/problems, anything financial, anything with customer data. Plain text emails are not secure — it’s like sending a postcard in postal mail — anyone can read it.