Regulation |
Requirements |
Encryption Tool Fit |
Encrypted Text Fields |
Salesforce Shield |
Protecting data in Apex |
NYCRR 500 |
NIST-compliant, 256-bit Advanced Encryption Standard (AES encryption) (up to 128 bit) |
✔ |
✔ |
✖ |
|
Store encryption keys apart from the encrypted financial data in a security device specifically designed for this task |
help1 |
✔ |
✔ |
|
The Key Management Interoperability Protocol (KMIP) |
✔ |
✔ |
✔ |
PCI DSS |
AES encryption (128 bit and higher) |
✔ |
✔ |
✔ |
|
PGP implemented |
✔ |
✔ |
✔ |
|
Keep encryption keys and data separate |
help1 |
✔ |
✔ |
HIPAA |
End-to-end encryption (E2EE) |
✔ |
✔ |
✔ |
|
AES encryption (128 bit and higher) |
✔ |
✔ |
✔ |
|
OpenPGP implemented |
✔ |
✔ |
✔ |
|
S/MIME implemented |
✔ |
✔ |
✔ |
GDPR |
End-to-end encryption (E2EE) |
✔ |
✔ |
✔ |
|
AES encryption (128 bit and higher) |
✔ |
✔ |
✔ |
CCPA |
End-to-end encryption (E2EE) |
✔ |
✔ |
✔ |
|
AES encryption (128 bit and higher) |
✔ |
✔ |
✔ |