This guide walks you through configuring Bring Your Own Key (BYOK) encryption using AWS KMS (Key Management Service) for your Snowplow pipeline. BYOK encryption allows you to maintain control over the encryption keys used to encrypt your behavioral data across Kinesis streams, SQS queues, and S3 buckets within your pipeline.
Once your KMS key is set up and shared with Snowplow Support, our team will apply the configuration changes on your behalf.
Please, refer to our public docs for more details: https://docs.snowplow.io/docs/pipeline/security/customer-managed-keys/
Snowplow Support will apply the configuration to your pipeline stacks and notify you once the deployment is complete.
- Login to our portal: https://support.snowplow.io
- Email us: support@snowplow.io
- Chat with us via Slack if you have a shared channel with us.