Stay organized with collections
Save and categorize content based on your preferences.
This page discusses client-side encryption, which is any data encryption you
perform prior to sending your data to Cloud Storage. For other encryption options,
see Data Encryption Options.
When you perform client-side encryption, you must create and manage your own
encryption keys, and you must use your own tools to encrypt data prior to
sending it to Cloud Storage. Data that you encrypt on the client side arrives
at Cloud Storage in an encrypted state, and Cloud Storage has no knowledge
of the keys you used to encrypt the data.
When Cloud Storage receives your data, it is encrypted a second time. This
second encryption is called server-side encryption, which Cloud Storage
manages. When you retrieve your data, Cloud Storage removes the server-side
layer of encryption, but you must decrypt the client-side layer yourself.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-01-30 UTC."],[],[]]