The main subjects of this chapter are as follows:
Defining messaging records management
Identifying messaging records management requirements
Planning messaging records management
Defining message classification
Identifying message-classification dependencies
Deploying message classification
Understanding message classification and transport rules
Identifying RMS requirements
The email compliance capabilities that Exchange Server 2007 introduces focus primarily on regulatory compliance and legal discovery (meaning the requirement to produce all relevant email during litigation, usually by subpoena). The three broad categories of compliance are as follows:
Legal compliance is generally the result of litigation.
Regulatory compliance is typically done in response to government regulations. It is of concern to all private and public sectors, but particularly those in the financial services and healthcare sectors, while public-sector organizations are required to comply with information requests from citizens. In the United States, the regulations of concern in the private sector include Sarbanes-Oxley, SEC Rules 17a-3 and 17a-4 (which require broker-dealers to create and retain certain records), Gramm-Leach-Bliley, and the Health Insurance Portability ...