Per-Tenant Encryption Features
Learn about the features of per-tenant encryption
Per-Tenant Encryption PricingThe Per-Tenant Encryption feature is part of the paid Security & Data Pro add-on. Contact your Ironclad account representative for more information about purchasing this package.
See an overview of the Security & Data Pro Add-on in our Help Center
What are the features of this package?
Per-tenant encryption allows you to encrypt your contract data inside Ironclad using an encryption key.
We support the following key management options:
- Keys managed by Ironclad
- Bring your own key (BYOK): You upload your own key file
- Hold your own key (HYOK): Configure a key that is stored with a cloud provider
- For HYOK, we support the following cloud providers
- GCP
- AWS (Coming Soon!)
- For HYOK, we support the following cloud providers
General Characteristics of the Features
- You can rotate your root keys on demand
- You can transparently migrate between all key management options
- You will lose access to your workflow data in any of the following scenarios
- HYOK:
- If you delete the root key
- If you revoke access to the root key
- HYOK:
Please contact the Ironclad support team if you have lost data access or need additional assistance.
General Limitations
- This feature only supports documents stored on in progress workflows in Ironclad.
- HYOK supported key material should be at least 256 bytes
Updated about 7 hours ago