Zivver, a renowned name in secure communications, recently released a comprehensive report highlighting the critical gaps in email security practices and their alignment with the ever-increasing regulatory requirements. The report titled “Email Security Trends 2025: The Widening Disconnect Between Email Security and Risk Management” sheds light on the often overlooked threats in email security and the growing scrutiny of regulatory demands on organizations.
In today’s digital landscape, landmark directives such as NIS2, DORA, and GDPR emphasize the need for rigorous risk management, information classification, and data leak prevention, with email being at the forefront of compliance requirements. Despite being a fundamental aspect of business communication, email usage poses significant risks as cyber threats become more sophisticated and compliance demands continue to evolve, becoming a major concern for organizations globally.
The report, which surveyed 400 IT decision-makers and 2,000 employees across the US, UK, Netherlands, France, Germany, and Belgium, revealed some alarming findings. Over two-thirds of IT leaders expressed concerns that vendors are not innovating quickly enough to address emerging risks, while 60% of employees admitted to circumventing email security policies using workarounds. Moreover, only 24% of IT leaders believed that their security spending is well-aligned with actual risks, leaving organizations vulnerable to both inbound and outbound threats.
Key findings from the report include the following points:
While 47% of IT leaders prioritize phishing and inbound threats, two-thirds acknowledge that outbound email mistakes, such as misaddressed emails or improper encryption, result in more significant data losses.
More than 50% of employees admit to making email-related mistakes every few months, with 60% resorting to workarounds to bypass policies, indicating a need for better tools and training.
Although 73% of employees are aware of security policies related to email, only 52% adhere to them.
Only 34% of email incidents are formally reported, leaving IT teams unaware of the full extent of security breaches.
54% of employees are more likely to make email mistakes when overwhelmed or busy, underscoring the necessity for supportive tools.
Rick Goud, Co-Founder and CIO of Zivver, stressed the importance of adopting a comprehensive approach to email security in line with compliance requirements. By integrating robust solutions that address both inbound and outbound risks and ensuring alignment with evolving regulations, organizations can create a secure and compliant environment for employees. The report offers actionable insights to help organizations align their security measures with current challenges while upholding the trust and productivity enabled by email.
For those interested in delving deeper into the report, a full copy can be downloaded from the following link: https://www.zivver.com/email-security-trends-2025.
About Zivver:
Zivver is a leading provider of solutions for secure communications and data leak prevention, focusing on safeguarding sensitive information. With a customer base of over 11,000 organizations, Zivver holds a dominant position in the Dutch healthcare, municipal, government, and legal sectors. Recognized by Gartner for several years as one of the top global providers of email data security, Zivver continues to lead the way in ensuring secure communication practices.
For more information about Zivver and its offerings, visit https://www.zivver.com.