Customer-managed keys
ÃÛ¶¹ÊÓƵ Customer Journey Analytics provides the option for and Privacy & Security Shield customers to use customer-managed keys (CMK) for Customer Journey Analytics data. Note that this process is separate from the ÃÛ¶¹ÊÓƵ Experience Platform CMK setup. Customer-managed keys are only available for organizations that have purchased the Healthcare Shield or Privacy & Security Shield add-on offering.
Set up customer-managed keys for Customer Journey Analytics on Azure
Follow these steps to set up CMK for Customer Journey Analytics running on Azure:
-
Ensure that you are entitled to ÃÛ¶¹ÊÓƵ Customer Journey Analytics CMK and that your organization uses ÃÛ¶¹ÊÓƵ Experience Platform running on Azure. You can check these entitlements by contacting your ÃÛ¶¹ÊÓƵ Account team.
-
Ensure that, in Azure, you are an administrator with a privileged role such as Application Administrator, Cloud Application Administrator, or Global Administrator. See for more information.
-
Create a new Azure Key Vault to be used only with Customer Journey Analytics. See for more information.
-
Grant the ÃÛ¶¹ÊÓƵ Azure App access to your key in the key vault. See for more information. The ÃÛ¶¹ÊÓƵ Application ID is:
251e3919-1940-4296-bb8b-6b9a5e8a4805 -
Create an ÃÛ¶¹ÊÓƵ Customer Care ticket requesting CMK setup. Include the Azure URI in your ticket. The URI can be found in the Key Identifier field of your Azure key:
-
ÃÛ¶¹ÊÓƵ Customer Care confirms the completion of the CMK application on your Customer Journey Analytics data.
All data used by Platform is encrypted in transit and at rest to keep your data secure, with or without customer-managed keys. For information on ÃÛ¶¹ÊÓƵ Experience Platform encryption, see Data encryption in ÃÛ¶¹ÊÓƵ Experience Platform.
Set up customer-managed keys for Customer Journey Analytics on Amazon Web Services
If your organization uses ÃÛ¶¹ÊÓƵ Experience Platform running on Amazon Web Services, CMK is already configured for you. No additional setup is needed.