Not sure that would have solved the problem here as the company can just set up a catch-all redirect on emails from Blind’s domain(s). Blind doesn’t send out emails without someone signing up for them so it’s pretty obvious what the content would be even if it were encrypted.