Trace Id is missing
Skip to main content
Microsoft 365

Office 365 Message Encryption

As part of our integrated investments in information protection, we are introducing rich new email encryption and rights protection capabilities in Office 365 Message Encryption that are built on top of Azure Information Protection. The new Office 365 Message Encryption capabilities make it easier to share protected emails with anybody—inside or outside your organization.

Protect sensitive emails

Help reduce the risk of unintended disclosure by encrypting and rights-protecting email messages sent both inside and outside your organization.

  • New! Send encrypted and rights protected messages to people inside and outside your organization (including users of Office 365, non-Office 365 email applications, and web-based email services such as and with Do Not Forward or custom Rights Management Services enable B2B and B2C scenarios.

  • Send encrypted email messages to anyone, regardless of their email address.

  • Provide strong, automated encryption with a cost-effective infrastructure.

  • Eliminate the need for certificates and use a recipient’s email address as the public key.

  • Communicate through a Transport Layer Security-enabled network to further enhance message security.

  • Enhance the security of email responses by encrypting each message in the thread.

Stay in control

Control sensitive data with flexible policies or ad hoc customer controls that are built into Office 365.

  • New! End-user controls that enable users to easily encrypt and apply rights management templates.

  • New! Provide and manage your own encryption keys with Bring Your Own Key for Azure Information Protection.

  • Easily manage sensitive data using single-action Exchange transport rules.

  • Protect sensitive information and data consistently and automatically from leaving your gateway.

  • Use policy-based encryption to encrypt messages at your gateway based on policy rules.

Meet compliance needs more easily

  • New! If you’re an Office 365 user, send encrypted email from any device using Outlook for Windows, Outlook for Mac, or

  • Help manage compliance through strong integration with data-loss prevention capabilities.

  • New! Native in-line reading experience for mails encrypted with Do Not Forward policy or custom Rights Management Services templates using Outlook clients for Office 365 users.

  • New! Non-Office 365 message recipients can authenticate and read protected messages using their consumer Google or Yahoo accounts, in addition to a One-Time Passcode and a Microsoft account.   

  • Easily navigate through encrypted messages with the clean Office 365 interface.

  • Deliver encrypted email directly to recipients' inboxes and not to a Web service.

  • Decrypt and read encrypted email with confidence, without installing client software.

  • Enjoy simplified user management that eliminates the need for certificate maintenance.

    Try Office 365 Message Encryption with an Office 365 E3 trial.

How to buy Office 365 Message Encryption

To use Office 365 Message Encryption, purchase Office 365 E3.

Follow Microsoft 365