Fortanix Offers New Data Sovereignty Solutions to Meet Security and Privacy Requirements

Fortanix Inc., the data security company and provider of Confidential Computing, is introducing new capabilities for Fortanix Data Security Manager (DSM), helping public and private organizations address growing global data sovereignty requirements.

Available now, the existing and new features deliver several key capabilities, including support for sovereign cloud, storing keys in sovereign boundaries, anonymization of private data, centralized control to manage access and enforce consistent policies across hybrid and multi-cloud environments, and more, all delivered via an intuitive user experience, according to the company.

Complying with a multitude of mandates is a major challenge for organizations, but Fortanix makes it easy to ensure compliance over sensitive data, while also bolstering security.

The Fortanix flagship DSM offering can be provisioned within customers’ sovereign regions, enabling them to have a dedicated solution that meets regulations in their legislative jurisdictions, according to the company.
“Data sovereignty goes beyond just where data resides; it is a multi-layered approach that encompasses data security, protection, and privacy. Fortanix’s existing and new capabilities exemplify our commitment to expanding and enhancing DSM to deliver the most advanced data security and privacy solution to organizations around the globe,” said Faiyaz Shahpurwala, chief product and strategy officer at Fortanix. “Security and data teams can now maintain greater international and cross-border security, compliance, and control over their data with a unified platform that is powered by confidential computing and validated by the highest industry certifications.”
Fortanix DSM’s key data sovereignty capabilities include:
  • Full control over key generation and lifecycle management for hybrid, multi-cloud environments with natively integrated KMS and FIPS 140-2 Level 3 HSM
  • The ability to store encryption keys separate from data and within sovereign regions
  • Enforced least privileged data access with RBAC and Quorum Controls to support Zero Trust architecture
  • Crypto agility with rapid migration to latest approved quantum-proof cryptographic algorithms
  • Format-preserving encryption to anonymize sensitive data at ingestion or creation before sharing across pipelines and workflows to keep it private, usable, and compliant
  • Native database encryption to manage and store the keys required to encrypt all databases, including Oracle, SQL Server, MongoDB, PostGres, MySQL, Maria DB, IBM DB2, and more
  • Joint VMware and Fortanix solution for scalable data protection and compliance for VMware Sovereign cloud environments
  • Sovereign support for Google Cloud services/offerings in the Kingdom of Saudi Arabia, in partnership with SITE and CNTXT
  • Confidential data search, enabling users to quickly search for regulated data in encrypted databases at terabyte scale
  • Customer choice of deployment models: on-premises, virtual appliances running in private or public cloud, or a fully managed SaaS across multiple global regions

Additionally, Fortanix has added support for client-side encryption of Gmail messages, rounding out its offering as an external key manager for organizations working in the Google Workspace ecosystem. This means that data will never be sent from a knowledge worker end point such as an employee laptop without it being encrypted while in transit, boosting data privacy and security across the organization.

Fortanix now offers key management for all Google Workspace applications that use client-side encryption, including Docs, Sheets, Calendar, and now Gmail. This enables Fortanix customers who use Google Workspace to create, store, and manage encryption keys themselves, and not through Google.

For more information about this news, visit