The default will be for Guard to require encryption for any replies that were originally sent encrypted.
A configuration cascade value will be created com.openexchange.guard.secureReply that will override this behavior. If set to false, the person replying can remove the encryption.