While all data on Creative Cloud and Document Cloud is encrypted, for extra layers of control and security, you can choose to have Adobe generate a dedicated encryption key for some or all the domains in your organization. Contents are then encrypted using the dedicated encryption key. If necessary, you can revoke the encryption key from the Admin Console.
Dedicated encryption keys are available only with the Creative Cloud or Document Cloud for enterprise shared services plans that include storage and services.
Does Adobe generate one encryption key per organization or one key per claimed domain?
Will I be notified when existing content has been encrypted?
Can I revoke the encryption key for a domain after it has been enabled?
How do I restore access to content after the encryption key has been revoked?
Can users browse files after the encryption key is disabled?
What happens if the encryption key is revoked while a file sync operation is in progress?
What apps, services, and data remain unaffected by the dedicated encryption key?
The following data is not encrypted using the dedicated encryption key and is therefore not affected if the key is revoked:
- Data of members of an organization with an Adobe ID account (unless the user is collaborating on content when Enterprise ID or Federated ID users initiated the collaboration).
- Metadata (file name, collection name, font use, MIME type, and other attributes necessary to browse a collection)
- Videos published by Premiere Clip and Adobe Voice
- Lightroom photos
- Colors that are stored by the Adobe Color service
- All data that is managed by the Behance and Adobe Font services
- All data managed by the Marketing Cloud
- Saved application preferences
- Information about the account holder such as name, email, licenses, and other basic user account information.
Contact your Adobe Account Manager for more information.