The organization is intending to set up a key escrow system. A key escrow refers to a secure process where a third party holds a copy of the encryption key, which can be used to access encrypted data if the user's private key is lost or becomes inaccessible. Using a certificate authority explicitly for encryption does not imply that key escrow services are provided; a certificate authority usually authenticates identities and issues digital certificates. Designating a key recovery agent does not necessarily indicate the use of a key escrow system, as this role is meant for retrieving keys from the escrow but is not the service itself. Full-disk encryption is unrelated to key management or recovery, as it pertains to protecting data at rest and does not encompass storing or handling keys.