Zilliz has now announced the general availability of Customer-Managed Encryption Keys (CMEK) on Zilliz Cloud. This allows enterprises to maintain complete control over their encryption keys and data sovereignty in AI-powered applications. With the growing adoption of AI in critical and sensitive environments, data security regulations such as GDPR, HIPAA, PCI-DSS, and SOC 2 must ensure that data security is tightly controlled. This is particularly true in the case of vector databases that process data based on sensitive information. With CMEK, users can ensure that their data is secure by separating the key management process from data processing. This way, they can ensure that the company cannot access their encryption keys.
Also Read: GitLab Launches Broader and Affordable Agentic AI for Software Lifecycle
The features of CMEK include complete segregation of duties, immediate data access revocation using AWS KMS, and consolidated auditing using AWS CloudTrail. This solution also allows users to deploy it easily with automated IAM policies and zero-downtime key rotation. “Security teams in regulated industries don’t just want encryption—they want proof that no one else, including their database vendor, can access their data. CMEK gives enterprises the strongest form of data sovereignty available in a managed service, removing one of the last barriers to deploying AI at scale in healthcare, financial services, and government,” said Charles Xie, Founder and CEO at Zilliz.