Administering Secure eMail

Security Questions

Privacy - organisation administrators

Secure eMail is a service available to all legal practitioners working in the Criminal Justice System. It is the only Government accredited secure route for sending emails to Criminal Justice Organisations, including Crown and magistrates' courts, the CPS, police and the National Offender Management Service.

Users can use Secure eMail to electronically send information to other organisations and practitioners connected to the service, up to and including anything marked 'Restricted'. The system uses 128 bit encryption to make sure that it cannot be read by anyone other than your intended recipient.


What does 'RESTRICTED' mean?

This is a Government-wide term that is used to refer to sensitive information which, if it became widely available, could cause personal or financial harm.

The Secure eMail service can handle material up to and including anything marked RESTRICTED, or its equivalent in the non-Government Protective Marking System world, such as PRIVATE, COMMERCIAL IN CONFIDENCE, or COMPANY CONFIDENTIAL.

If information is marked as 'RESTRICTED,' care should be taken to ensure that it is handled and stored appropriately. As a rule of thumb, anything you receive through Secure eMail should be treated as RESTRICTED.


Keeping Secure eMail secure

To ensure that Secure eMail stays secure, we have developed a stringent set of guidelines for users of the Secure eMail service to follow, and organisation administrators play a vital part in ensuring that these guidelines are being adhered to.

As a general rule, Secure eMail should only be used for legitimate business purposes relating to the Criminal Justice System.

Organisations and individuals could have their Secure eMail account suspended or removed if:

  • They share their user account details or Secure eMail password with anyone else. Secretaries, PA's and clerks may be allowed to use the details on a user's behalf, but the user will remain responsible for what they do with it.
  • They allow strangers to enter areas of your premises where IT systems with access to Secure eMail are in use. Where this is unavoidable, all visitors must be escorted at all times.
  • They send confidential information to people who don't need to know it.

All users of Secure eMail are also required to abide by the relevant legislation pertaining to the sharing of information, including the Data Protection and Freedom of Information Acts.

In some exceptional circumstances, organisation administrators will be able to access other users' accounts. This is a privilege to help the smooth functioning of Secure eMail in the event of a user's serious illness, absence or death, and must not be abused.

See more details of our Exceptional Access policy.


Terms and Conditions

Before anyone can join the Secure eMail service, they also have to agree to our terms and conditions, which sets out in great detail the levels of security we expect them to maintain.

This ranges from ensuring that they have a hardware firewall installed, to making sure that strangers are accompanied at all times in areas where Secure eMail is being used.

Please note: all actions performed within the Secure eMail service are auditable, and may be closely monitored.