Zilliz Cloud Adds Customer-Managed Encryption Keys for Regulated AI Workloads
Event summary
- Zilliz Cloud launched Customer-Managed Encryption Keys (CMEK) on March 20, 2026, allowing enterprises to retain full ownership of their encryption keys.
- CMEK is generally available for Dedicated clusters on the Zilliz Cloud Business-Critical plan, starting with AWS.
- The feature enables true data sovereignty for AI workloads in regulated industries like healthcare, financial services, and government.
- CMEK separates key ownership from data processing, ensuring Zilliz never accesses customer encryption keys.
- Setup takes minutes through the Zilliz Cloud console, with support for zero-downtime key rotation.
The big picture
Zilliz's CMEK launch addresses a critical gap in enterprise AI deployments, particularly in highly regulated sectors where data sovereignty is paramount. As AI becomes more embedded in mission-critical workflows, the ability to demonstrate exclusive control over encryption keys is increasingly a non-negotiable requirement. This move positions Zilliz to capture a larger share of the enterprise AI market, particularly among organizations handling sensitive data such as customer records, medical images, and financial transactions.
What we're watching
- Adoption Pace
- How quickly regulated industries will adopt CMEK for AI workloads, given the stringent compliance requirements.
- Competitive Response
- Whether competitors in the vector database space will introduce similar encryption key management features.
- Regulatory Impact
- The extent to which CMEK will influence regulatory frameworks for data sovereignty in AI deployments.
Related topics