2 Answers
- Newest
- Most votes
- Most comments
0
Customer Data encryption is always customer's responsibility as can be seen clearly in the Shared responsibility model.
0
Possibly SaaS where they encrypt the data for you (or at least should). The customer is responsible for their data in any cloud platform AWS, GCLOUD, or Azure. That's entirely by design.
answered a year ago
Thanks for your reply Evan. So, if the SaaS service model, where you say "they" encrypt the data for you, if the Customer doesn't take the initiative of encrypting their data in this service model (SaaS), and the data is breached, who is liable - customer or AWS? If possible, I would love a response that offers a definitive answer, versus an opinion. Thanks again Evan.
Relevant content
- asked a year ago
- asked 4 years ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated 2 years ago
If the deployment model, service model, or no other exceptions matter, then that's good enough for me. From this point forward, I will say that the customer is responsible for the encryption of their data - NO MATTER WHAT!!! Thanks Tushar J