台灣於2010年4月通過了「個人資料保護法」的法案,其主要目的是加強企業及機關對於個人資料安全的重視,以避免因為個人資料洩漏而造成使用者的困擾及各項損失。綜合現在的資訊安全在防範的項目中,電子郵件系統是屬於非常多企業及機關所使用的系統,並且也有許多的資訊安全可以更加的進行防護,以避免因為電子郵件系統的管理不當而造成的損失。本研究將以 Microsoft 的 Exchange Server 2010為主要的研究對象,透過本研究可以了解如何以 Exchange Server 2010 為平台時,如何進行電子郵件內容的判斷及因應,進而遵守並符合「個人資料保護法」的規範。
In April 2010, Taiwan passed the "Personal Information Protection Act". The main purpose of the act is to raise awareness of the importance of personal information security amongst businesses and organizations, so to prevent leakage of personal information and any loss resulted from data breach. Amongst the various systems that are associated with data security, e-mail system is widely used within enterprises and institutions. There are several data security mechanisms available to prevent any loss caused by poor email system management. This case study focuses on Microsoft's Exchange Server 2010 and examines how as a platform, it evaluates email content and respond accordingly to comply with the specifications of the "Personal Information Protection Act".