Zoom has announced that it will launch a key customer-managed service in an effort to help businesses comply with strict regulations.
The company cites the healthcare industry's HIPAA and the Financial Services Institutions Gramm-Leach Bliley Act and the New York DFS rules as some of the unique regulatory requirements that specific industries must meet, which often means that companies must store their data in a certain way. .
In a blog post (opens in a new tab), Karthik Raman, product manager at Zoom Group, explains that "every organization has a different approach to protecting sensitive information and staying compliant, and some need custom security to do so."
With the introduction of customer-managed keys, the video conferencing platform hopes to address a broader range of scenarios while "equipped with the ability to protect certain data stored at rest on the Zoom Cloud infrastructure using proprietary encryption keys.
Keys managed by the Zoom client
If you choose to use this new method to protect your data, files such as cloud recordings, voicemails, and calendar access tokens will remain encrypted, but under your own key.
The Zoom Customer Managed Key will cover the following productivity tools and resources:
- Zoom Meeting cloud recordings (including chat transcripts and texts)
- Zoom webinar cloud recordings
- Zoom Phone voice recordings and messages
- Calendar Access Tokens for Zoom Rooms
- User calendar access tokens
- Microsoft Teams Access Tokens
- Archiving of meetings and webinars
A statement in the blog post reads: "We strive to provide the tools you need to navigate today's complex regulatory landscape and tailor a security strategy to your organization's unique needs."
At launch, customers currently using the AWS Key Management Service will be able to use Zoom customer-managed keys, which can be configured in the "Security" tab of the Zoom admin portal or from Zoom Global Services.