Skip to Main Content

Share your product feedback

Status Future consideration
Categories Application
Created by Brian Trombley
Created on Mar 16, 2022

Allow us to encrypt our Aha data using our own encryption security keys (BYOK)

Given that we store very sensitive customer and business information in Aha, our Production Security and Compliance teams would strongly prefer that we have the option to use our own encryption security keys (BYOK) for our Aha instance. This gives us full control of our own data.

This is becoming a buying criteria for our org when evaluating SaaS vendors that handle customer data. This may eventually become an obstacle for us with future Aha renewals.

  • Attach files
  • Admin
    Joseph Antrosio
    Reply
    |
    Mar 25, 2022

    Thank you for your feedback!

    Aha! products are multi-tenant and the encryption keys are Aha! managed. Aha! generates and stores encryption keys through AWS Key Management Service (KMS) to protect keys from unauthorized access and maintain key availability. Aha! maintains key management procedures as part of our ISO27001 certified ISMS.

    We do not currently support customer generated keys and do not manage keys on behalf of customers. We will continue to monitor customer feedback in this area and consider it in the future.