Press Release

2007 Proofpoint Survey Finds that 32% of Large U.S. Companies Employ Personnel to Read Employee Email

Nearly 28% have terminated employees for email policy violations 20% have disciplined employees for improper use of blogs/message boards; 14% for social network violations; 11% for improper use of media sharing sites

Cupertino, Calif. – July 23, 2007 – In its fourth-annual study of outbound email and content security issues, email security and data loss prevention company Proofpoint, Inc. found that outbound email and other electronic communication protocols continue to grow as a source of risk for companies. The study found that 32.1% of surveyed companies with 1,000 or more employees hire staff to read or analyze the contents of outbound email. 38.8% of larger companies surveyed (those with more than 20,000 employees) employ staff for this purpose. Additionally, 16.9% of companies surveyed employ staff whose primary or exclusive job responsibility is to read or otherwise analyze email content.

Email remains a primary source of information leakage, which can result in regulatory compliance violations, legal problems and loss of competitive position. Respondents estimated that nearly 20% of all outbound email poses a legal, regulatory or financial risk. More than a third of surveyed companies investigated a suspected email leak of confidential or proprietary information in the past 12 months. Additional key findings from the survey include:

More than one-quarter of surveyed companies (27.3%) have terminated an employee for violating email policies in the past 12 months. 45.5% have disciplined an employee for violating email policies in the past year.
More than one-quarter (26.3%) of surveyed companies report their business was impacted by the exposure of sensitive or embarrassing information in the last year and 33.8% investigated a suspected email leak of confidential or proprietary information.
29.1% of the largest enterprises (20,000 employees or more) reported that employee email was subpoenaed in the last 12 months.
48.7% of respondents said they are “concerned” or “very concerned” about Web-based email (such as HotMail or GMail) as a potential conduit of confidential or proprietary information.

Amid the current Web 2.0 hype, media sharing and social networking sites have also emerged as a significant concern for enterprises. Some of the key findings included:

In the past 12 months, 14.0% of surveyed companies have disciplined an employee for violating social networking policies and nearly 5% terminated an employee for such a violation.
In the past 12 months, 11.0% of surveyed companies have disciplined an employee for violating media sharing policies and 6.8% terminated an employee for such a violation.

The study also found that other communications channels – such as Web-based mail, peer-to-peer networks, instant messaging, and blogs and message boards – continue to be a significant sources of risk for companies:

In the past 12 months, 21.4% of companies surveyed had investigated the exposure of sensitive information via blog or message board postings, while 19.2% disciplined and 9.1% terminated employees for such infractions.
In the past 12 months, 12.4% of publicly traded companies surveyed had investigated the exposure of material information via blog or message board postings.
48.7% of companies are very concerned or concerned about Web-based email as a conduit for exposure of confidential or proprietary information. Respondents are also very concerned about FTP, instant messaging, peer-to-peer networks, media sharing sites, blogs and message boards as potential conduits for data loss.
Among the largest companies (20,000 and more employees), peer-to-peer networks were the no. 1 source of concern for information leakage via non-email electronic communications channels, eclipsing Web-based email, instant messaging, media sharing sites and blogs.

Overall, the top outbound email concerns for surveyed companies in 2007 were:

Protecting the confidentiality of personal identity and financial information in email
Ensuring compliance with financial disclosure or corporate governance regulations
Ensuring that email cannot be used to disseminate trade secrets and intellectual property
Ensuring that internal memos cannot be disseminated via email

To download a free copy of Proofpoint’s complete report, Outbound Email and Content Security in Today’s Enterprise, 2007, visit:
http://www.proofpoint.com/outbound.

PR Contacts

LEWIS PR for Proofpoint
Kate Sowell (West Coast)
408-573-3664
Christine Huynh (East Coast) 617-226-8877 pr@proofpoint.com

| More

Email Protection Software

Email Encryption Software
Zero-Hour Anti-Virus
Network Email Scan
Smart Search
Secure File Transfer

Email Security Technology

MLX™ Machine Learning Technology
Dynamic Reputation
Email Security Virtual Appliance

Email Security Whitepapers

HIPAA Email ROI
HIPAA Compliance for Email
Best Practices in Email Security
Outbound Email & Data Loss Prevention Statistics
Outbound Email Security

Intro To Inbound & Outbound Email Security

Email Security Blog
Email Security Video Demo
Email Archiving Video Demo
Secure File Transfer Video Demo
45-Day Free Trial: Proofpoint Virtual Appliance
30-Day Free Trial: Proofpoint on Demand
How to Buy

Email Security By Industry

Healthcare
Financial Services
Government
Education
Retail

Featured Resources

Using SaaS to Reduce the Costs of Email Security
IDC: Proofpoint - Innovating to Stay Ahead
Anti-Spam Appliance Review
Spam and Virus Trends Report
Hybrid Email Security Whitepaper
Secure File Transfer Whitepaper
Email Security Newsletter Subscription