No, but now they see that the minimum is not where they had thought. As someone who does security professionally, of course a business wants to do the minimum necessary for security. The point of security systems is to break things that would otherwise work.

TLS is there to break sessions that would work under TCP. GPG is there to tell you to discard some mail.