Yes - all logons are always forced to use SSL. All email can also optionally be delivered using TLS (transport layer security) if a client requires TLS to a partner this can also be built out for an additional charge.