My employer is interested in purchasing intrusion detection software to comply with the safeguarding customer information requirements under GLBA. The software comes in two versions. One version of this software will allow the bank to monitor incoming and outgoing e-mails, as well as the subject line. The second version has the same features as the first, but will also give the bank the capability to actually read the content of the e-mails. If the bank opted to purchase the second version of the software and then read the incoming and outgoing e-mails of its employees would this be a violation of state and/or federal laws? If so, which ones? Thanks for your prompt responses.