The SendSafely Serverless Email Gateway

Promote this Nomination

Additional Info

Company (that provides the nominated product / solution / service)SendSafely
Company size (employees)10 to 49
Type of solutionCloud/SaaS

In 3 bullets, summarize why this product or service is different from the competition and deserves recognition:

1) The SEG’s ability to protect inbound messages is unique in that it allows organizations to shield service desks and email inboxes from inadvertently receiving unencrypted customer PII via insecure email and attachments. Sophisticated data protection occurs automatically and seamlessly behind the scenes, bringing email-based third party platforms into compliance with minimal fuss.

(2) Hosted in AWS, the SEG relies entirely on managed services so IT staff are no longer burdened with managing and securing related infrastructure. The SEG can be deployed quickly and scale infinitely with very little administrative overhead.

(3) With no infrastructure to purchase or maintain and by leveraging existing email and DLP platforms, the SEG is a cost effective way to protect reputation, safeguard data and meet regulatory requirements without expensive system upgrade or replacement.

Brief Overview

The SendSafely Serverless Email Gateway (SEG) leverages your existing email or DLP platform to automatically encrypt inbound and outbound messages using a completely Serverless architecture. The SEG protects every user, across every device with no client-side software to install or maintain and no infrastructure or virtual servers to manage.

How it Works
SendSafely’s SEG is powered by an AWS Lambda function, which automatically protects email messages based on pre-set attributes in your email or DLP platform. Flagged messages are routed to Lambda using Amazon Simple Email Service, which when combined with Lambda provides a reliable and scalable serverless infrastructure.

The SEG Lambda function is designed to run within your own AWS account, so SendSafely never has access to your un-encrypted emails or the encryption keys used to protect them. In addition to end-to-end encryption, the SEG enforces access control policies limiting who can view attachments, file expiration settings for automated file destruction and logging of all recipient views and downloads for audit support.

Outbound Message Protection
Outbound messages containing sensitive data are intercepted before they ever leave your organization. You have full control over which messages are routed to the SEG and retain an un-encrypted copy of the message in the Sent folder. Our SEG works natively with Office 365 and G-Suite.

Inbound Message Protection
The SEG also protects companies from their customer’s lack of security awareness by seamlessly intercepting and encrypting inbound messages destined for insecure group email inboxes or third party service desk platforms like Zendesk or Salesforce. Security is enforced without aggravating clients by rejecting insecure submissions or relying on manual agent intervention or redaction, which is inconsistent and error-prone. No changes are required to existing workflows, allowing employees to focus on serving customers without worrying about security.

A video overview is available here: