My company is using Spam firewall protection. We have added a list of external domain names to force the TLS connects to Encrypt all messages going to these external domains. Reading through email encryption whitepaper it states that encrypted emails would be received by the recipient through the Barracuda Message Center. Our recipient is not required to use the Barracuda message center to view the email, But i was assured this message was encrypted. Is this HIPAA compliant, or should the recipient be viewing the message through the Barracuda Message Center?