Protected customer data requirements #9. Encrypt data at rest and in transit.

channel
Shopify Partner
18 0 1

Hello, I have a question about the Protected customer data requirements that are needed for API version 2022-10.
https://shopify.dev/apps/store/data-protection/protected-customer-data#requirements

Level 1 requirement #9 says,
"Encrypt data at rest and in transit.
Encrypting data when stored and as it transits various networks helps to prevent bad actors from gaining access to it even if they have access to the application. It also reduces the consequences of unintentionally disclosing the data set to the general public."

 

I was wondering if using AWS's kms for our dynamodb would be good enough to meet this requirement.
https://aws.amazon.com/kms/?nc1=h_ls

 

Replies 0 (0)