New Feature for Spanning Backup for Salesforce: Encryption Key Management

Based on recommendations by the Cloud Security Alliance and the requirements of the Criminal Justice Information Services (CJIS) Security Policy, enterprise organizations want SaaS data protection solutions that support the self-management of encryption keys. We are excited to announce that Spanning Backup for Salesforce is the first and only AppExchange backup and recovery solution that supports Encryption Key Management allowing enterprise customers to generate and supply their own encryption keys, giving them increased ownership of data security.

As the owner of the encryption key, you have full control over the data. You can audit key usage, set key rotation policies and revoke access to data at any time to make all encrypted data un-readable.

Spanning Backup for Salesforce encryption key management addresses the following use cases:

  • Risk mitigation for unintentional or unknown exposure. Security teams want to be able to control when their cloud providers can access data, and they want the ability to suspend or shut off access at any time. With Spanning Backup for Salesforce’s new encryption key management feature, organizations can revoke all cloud provider access to corporate data.
  • Compliance or regulatory controls. Many organizations must meet client contractual compliance and regulatory requirements for legal, financial, and consulting firms required to maintain control over client data at all times. This new security capability allows you to mitigate the risk of unintentional or unknown exposures to your data.
  • Internal policies and contracted policies. If an organization has corporate or legal policies directing the control of access to cloud-based and SaaS data via self-managing encryption keys, or if contracted partners or customers have these policies, Spanning Backup for Salesforce can now support those directives when required to manage their own encryption keys.
  • Control and transparency regarding access to encrypted data. Encryption key management provides full transparency into who has access to your data and how the encryption keys are used.

The Cloud Security Alliance advises, “It is highly recommended that organizations maintain their own keys or use a trusted cryptographic service from a source that currently maintains such as service.” In addition, CJIS Security Policy compliance requires organizations to manage their own encryption keys when any CJI data is stored outside of an on-premises data center. In support of these recommendations, Spanning Backup for Salesforce enables enterprise organizations to manage their own encryption keys.

With Spanning Backup for Salesforce Encryption Key Management, both new and current customers can get full control over Spanning backup data. And with this new feature, Spanning by EMC consolidates its leadership as an enterprise-class Salesforce backup and restore solution.

If you’re interested in learning more about Encryption Key Management for enterprises, please contact your Spanning sales representative. Learn more about Spanning Backup for Salesforce here or start a free 14-day trial today and see how it works!


GOT SOMETHING TO SAY?