Customer Managed Encryption Keys

Technology add-on to the PROTECT solution

NetDocuments Customer Managed Encryption Keys (CMEK) provides a third layer of cryptography, which makes it possible to secure both your documents and the keys that protect those documents. The core NetDocuments service includes two layers of encryption: in the first layer, each document receives its own encryption key, and the second layer encrypts those keys. CMEK adds a third layer which can be flexibly applied through metadata attributes, providing an additional layer of security and control.

Protect Data & Control Keys

Take advantage of dual-custody control to protect content by applying CMEKs. Customers can deploy and control CMEKs using NetDocuments Hardware Security Modules (HSMs) or purchase their own.

Learn More
Graphic of a key icon with six other fingerprint and padlock icons surrounding it.
A man taps on a fake screen with a diagram and a box he is pointing to.

Manage Encryption Hierarchy

Use FlexStore Pro to Assign a customer managed key to a metadata attribute, for example, client, matter, or project. Move the cryptography process closer to users.

Request more info

Revoke Access

Revoke customer managed encryption keys to instantly and completely deny all access to content protected by those keys.

Learn More
A graphic with the words Access Denied in red lettering.

Learn More About Customer Managed Encryption Keys

Explore More Technologies in the PROTECT Solution

Let's Talk!

“When we had to relocate to working from home during the COVID-19 pandemic, we were so pleased to know that security was a non-issue because of NetDocuments' native-cloud capabilities.”

- Charles Collins, Ward and Smith, P.A.

Fill out the form to request a consultation and learn which solution is right for you.