Data Encryption at rest by ServiceNowIssue <!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #7057C7; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } What Is Data Encryption at Rest? Encryption at rest refers to the process of encoding data while it is stored—whether on disk, in databases, or backups—so that it remains protected from unauthorized access. This ensures that even if someone gains physical access to the storage medium, they cannot read the data without the encryption keys. In practice: Data is encrypted using symmetric encryption (commonly AES-256).Keys are securely stored and managed, often using hierarchical key management systems.Encryption is transparent to applications and users, meaning it doesn’t interfere with normal operations. This article discusses whether ServiceNow provides data encryption at rest for customer data. Release<!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #7057C7; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } All Versions Resolution<!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #7057C7; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } ServiceNow uses encryption for both data in transit and data at rest, though full encryption at rest is not the default. Specifically, ServiceNow offers database encryption and full disk encryption, but these require customer activation. Additionally, customers can encrypt specific columns within the database. For data in transit, ServiceNow uses standard HTTPS for communications between the browser and the website Data at rest encryption is not enabled by default for customers using the standard ServiceNow Commercial Cloud. ServiceNow provides customers with a suite of encryption options for data at rest, which includes both a free option and premium options available at additional cost. Customers need to define and map their encryption requirements and align them with the best solution offering available from ServiceNow. Data at rest encryption options include application-centric column-based encryption, as well as solutions that provide full backend volume-based or drive-based encryption. The Now Platform also supports data-at-rest encryption and key management requirements. For more information on all data at rest encryption offerings, please see ServiceNow's Encryption whitepaper (page 6) specifically: https://www.servicenow.com/content/dam/servicenow-assets/public/en-us/doc-type/resource-center/white-paper/wp-data-encryption-with-servicenow.pdf You can also find more details about this in our "Shared Responsibility Model", section Data Encryption at Rest (see page 8): https://www.servicenow.com/content/dam/servicenow-assets/public/en-us/doc-type/resource-center/white-paper/wp-shared-responsibility-model.pdf and on "Database Encryption" https://www.servicenow.com/docs/csh?topicname=db-full-disk-encryption.html&version=latest and "Edge Encryption" https://www.servicenow.com/docs/csh?topicname=c_EdgeEncryptionOverview.html&version=latest