Secure emails

Our standard secure email system is called Office 365 Message Encryption (OME).

Sensitive emails are marked at the council end, which automatically encrypts the emails.

Recipients then need to decrypt the email, either by requesting a "one-time passcode", or signing into a Microsoft or Google account (if they have one).

Read more in our guide on sending and receiving secure email using OME (PDF, 284KB).

Our enhanced secure email system is called Transport Layer Security (TLS) and is a secure connection between two organisations.

Once a TLS connection is set up between the council and your organisation, secure emails can be sent just like normal emails because the connection between us is guaranteed secure. TLS is a government-recommended standard and is free to implement.

Read more in our guide on sending and receiving secure email using TLS (PDF, 183KB).

If your organisation uses GCSx mailboxes to send secure email, you may know that the government has announced that the Government Secure Intranet (GSI) infrastructure, which includes GCS, will end from April 2019.

If your organisation uses GCSx mailboxes to send secure email to Suffolk County Council, read our guide on the end of GCSx, a guide for partner organisations (PDF, 183KB). The guide explains what the council is doing to prepare for the end of GCSx and what your organisation can do to ensure a smooth transition.

A point to note is that GCSx connections were only ever secure if both the sender and recipient both had GCSx mailboxes. The new solution put in place by the council ensures both ends of an email connection are secure.

Some partners of Suffolk County Council may be using the Egress Switch secure email system to send sensitive emails to the council.

In these cases, the council can accept these emails.

Please note that Suffolk County Council staff will have to use a separate Egress viewer to open the emails.