We noticed since the switch to UCI that the users were able to delete attachments in mail. This is a big risk for operations, because these documents should not be deleted. The answer that we got from MS support is to write a custom script to block users from deleting attachments. This solution is however unsupported. Every deletion action is regulated through the security roles. Therefore, we hope that a role can be created for email attachments as well.