Most jobs I've had in the last 15 years have asked me if I want a Max or Windows PC. I've had Linux boxes at most of them as well, but not as the primary machine.
While you aren't wrong about the threat model, you do have to be clear with them that email isn't an acceptable transport in any way for sensitive data. Email is an inherently insecure model, and anyone in the middle of the conversation can read that traffic. It doesn't have to be a malicious email provider, just someone with access to a transit network.
Loads of people are using it. Most people do but it's not enforced. If I poison the opposing MTA's DNS I can bypass it.
I get up, let out the dogs & chickens. Bring the dogs back in & feed the cats and dogs. I have coffee, then I go to my office. I've been working from home since 2010 and I'll never go back to an office situation.
Edit: New England, in the US
It's not, but it's also the same risk for any email server. Email is not a secure transport and should not be used for this type of information, no matter who the providers are.
@aihorde@lemmy.dbzer0.com Draw for me a Lemmy user typing a request for a picture and laughing at the great results
@aihorde@lemmy.dbzer0.com Draw for me a pink dragon in a bikini eating a car on the beach
@aihorde@lemmy.dbzer0.com Draw for me a Lemmy user typing a request for a picture and laughing at the great results
@skookumasfrig
@sopuli.xyz