How your data is stored and encrypted

All interaction with IBM Cloud Transit Gateway from clients is encrypted. For example, when you use an API or interact with the service through the user interface to configure gateways and connections, all such interactions are fully end-to-end encrypted. Likewise, data elements related to the your configuration are encrypted in transit and at rest. No personal or sensitive data is stored, processed, or transmitted, and data at rest is stored in an encrypted database.

However, the purpose of IBM Cloud Transit Gateway is to join your networks together. Once one VPC is connected to another, the encryption of data that you choose to transmit across the network is your responsibility.

Protecting your sensitive data

Data related to IBM Cloud Transit Gateway's configuration is not considered sensitive data. The configuration data is encrypted at rest at database level. The transit gatewat does not manage any customer-managed keys. As a result, there is no need or use for either Key Protect or Hyper Protect Crypto Services.

Deleting your data in IBM Cloud Transit Gateway

You can delete your transit gateway's configuration through API or with the user interface.