HIPAA Encrypt Outgoing emails or require all users to sign in

HIPAA Encrypt Outgoing emails or require all users to sign in

Hello,

TLS security is no longer considered strong enough for HIPAA compliance. This means Zoho Desk isn't compliant enough under the laws which we're needing to use. I wanted to use a new department, to be able to set up potentially another 40 users in for HIPAA compliance responses to an unnamed hospital.

The help desk article no longer goes far enough as required by the hospital organizations and local government we work with:
https://help.zoho.com/portal/en/kb/desk/for-administrators/user-access-and-security/articles/hipaa-compliance-guide


I need to be able to one of the two:

1) Rerequire emails being sent (AND RECEIVED) to be encrypted. Saying "zoho uses TLS" isn't enough, the landing party also needs it. There's no way to verify it.

or

2) Let us require the CLIENT to log in to view a ticket response. Something as simple as "So and so responded to your ticket, please login to view by clicking this link"

For now we're using hushmail to send out encrypted emails. We would really love to bring it in house under Zoho Desk.

i think the easiest way is: allow me to FORCE the client (ticket creator or anyone CC'd on the ticket) to have to login. This is possible on ZenDesk, Quadrant Desk, FreshDesk, SysAid, SolarWinds, and Jira. By not having it, Zoho Desk is in the past.