The new ATP Anti-phishing solution seems to be working well however we have run into a few issues and curious what others are doing. We have several users that on occasion use their personal email accounts to send emails back to the office (@hotmail.com or @gmail.com) . I would love to say they should not do this, but we all know users do what users do. The problem is, these emails also get flagged. For example, I have a personal email address with my name and I send an email back to the office. Obviously by design, ATP will flag that email address as it did not come from our network. I know we can add safe senders, but this is a reactive measure. How are you guys attacking situations like this? Is there something else I could be doing proactively ?