Per-Tenant Encryption Features
Learn about the features of per-tenant encryption
Per-Tenant Encryption Pricing
The Per-Tenant Encryption feature is part of the paid Security & Data Pro add-on. Contact your Ironclad account representative for more information about purchasing this package.
See an overview of the Security & Data Pro Add-on in our Help Center
What are the features of this package?
Per-tenant encryption allows you to encrypt your contract data inside Ironclad using an encryption key. Ironclad has developed this feature in partnership with Antimatter.
We support the following key management options:
- Keys managed by Antimatter
- Keys managed by Ironclad
- Bring your own key (BYOK): You upload your own key file
- Hold your own key (HYOK): Configure a key that is stored with a cloud provider
- For HYOK, we support the following cloud providers
- AWS
- GCP
- Azure
- For HYOK, we support the following cloud providers
General Characteristics of the Features
- You can rotate your root keys on demand
- You can transparently migrate between all key management options
- You will lose access to your workflow data in any of the following scenarios
- HYOK:
- If you delete the root key
- If you revoke access to the root key
- HYOK:
Please contact the Ironclad support team if you have lost data access or need additional assistance.
General Limitations
- This feature only support workflows
- BYOK supported key material should be at least 256 bytes
Updated 3 months ago