Hi there,
A key aspect of data sovereignty is protecting due process for your customers when a foreign government wants access to their data.
If you're an American company, can the U.S. government subpoena your customer's data without your customer's knowledge or ability to challenge access to that data? To guarantee data sovereignty to your customers, the answer to that question must be "no."
Data sovereignty is multi-pronged. There are contractual agreements that need to be in place. You need to know exactly where your customer data is stored, including backups and cloud storage. And you need to give your customers technical measures to ensure the laws of their country or region are followed with respect to privacy when a government wants access.
Introducing data sovereignty tagging
At IronCore Labs, we have leading technical solutions to meet data sovereignty requirements with encryption. And for customers of our SaaS Shield application-layer encryption platform, you now have access to a new feature called tagging (see the docs).
If your company manages data centers across countries, you must ensure that data can only be decrypted in the appropriate data center. Tagging allows you to better manage and assign keys to specific regions, allowing you to prevent access of keys from regions outside of where they're intended to be used. Infrastructure elements can be tagged and configurations can be assigned to those specific tags, making management and compliance easier in multi-cloud global environments.
Feel free to contact your account rep if you want to learn more about making use of tagging. This feature is included at no additional cost to customers.
.png?upscale=true&width=1200&upscale=true&name=May%202023%20Blog%20Header%20(2).png)
