Email Encryption

We have setup a security label drop down menu that you can find to the far right of the subject line in your email message. See below and note the green shield. The green shield is our default “General Label”, which is non-confidential emails that are intended to be sent to internal employees and trusted external partners.

Graphical user interface, text, application, chat or text messageDescription automatically generated

Please use these Teller County security labels to send confidential emails and attachments. You can click on the drop down menu to select either the yellow shield or red shield for encrypting confidential emails and attachments. The yellow shield is for internal encryption (employee to employee) and the red shield is for external encryption (trusted external partners). When you select either of these shields, the message and attachments are encrypted and set to do not forward. This means that the intended recipients cannot forward the encrypted message or attachments to unintended recipients. Examples of sensitive information that would require encryption include: Confidential Sheriff’s Office information, HIPAA/PHI, PII, PCI, PIFI, sensitive employee data, etc.

Label Descriptions Based on Shield Colors:

Teller County – General (Unrestricted): This is our default label for all email traffic, unless modified by you. Use this label to send non-confidential Teller County Government information that is intended for Teller County Employees and/or external trusted partners.

Teller County – Public (Unrestricted): Use this label to send Teller County Government information that is specifically prepared and approved for public consumption. Examples would be press releases or public reports.

Teller County – Internal Use Only (Encrypt and Do Not Forward): Use this label to send confidential Teller County Government information that is intended for authorized employees only. Messages and attachments are set to both encrypt and do not forward.

Teller County – External Restricted (Encrypt and Do Not Forward): Use this label to send confidential Teller County Government information that is intended for authorized employees and external trusted partners. Messages and attachments are set to both encrypt and do not forward.

Teller County – Internal Use Only (Encrypt with Permissions): Use this label to send confidential Teller County Government information that is intended for authorized employees only. Message and attachments are encrypted – but can be copied, forwarded, and printed for work-related tasks.

For those of us who are required to answer questions from our trusted partners about the encryption that we are utilizing:

We are utilizing OME end-to-end encryption, which ensures that only the intended recipients can read the email content, thereby keeping our data safe and secure.
Our data is encrypted at rest using Bitlocker Drive encryption.
Our data is encrypted in transit using TLS (Transport Layer Security) with 256- bit AES encryption.
- If our recipients’ email client does not utilize TLS encryption, the recipient will be sent an email to authenticate first with a passcode or login. The recipient will then be granted access to the Microsoft 365 portal to login and access the encrypted message contents.