In response to a request from a content server to forward an encrypted document to a recipient user, a forwarding engine in the content server prepares an e-mail message that contains a link to the document publisher and an identifier for the document. Upon receiving the e-mail, the recipient user can log onto a content server in the publisher and the publisher content server resolves the link, downloads a secure viewer program and an encrypted version of the requested document to the viewer program. Subsequently, the secure viewer program requests a decryption key for the encrypted document and decrypts the document. The recipient user can then view the document content in secure viewer but cannot copy or print the document without permission from the publisher.