I don't know how it is over there, but legally mandated record keeping requirements are a pretty good excuse for not using public key encryption on corporate mail servers. There are products that act as middlemen that transparently convert between keys that are public and self generated... but that kind of defeats the purpose of public key encryption.
Not at all. Just securely store a copy of all work keys on a non-networked, "cold storage" server and back it up for redundancy. Record keeping is preserved while you gain the full benefits of PGP.
You're right about the cold storage aspect, I was thinking about some of the transparent encryption gateway products that are out there. Email sent to folks without PGP would still be unencrypted when it goes through the corporate MTA, but a copy encrypted with the sender's public key would be stored long term.
