Skip to main content
All CollectionsControl Tests
Test: Security Policies Cover Encryption
Test: Security Policies Cover Encryption

Drata inspects your company security policies to determine if they explain the procedures for encrypting sensitive data.

Ashley Hyman avatar
Written by Ashley Hyman
Updated over a week ago

ASSOCIATED DRATA CONTROL

This test is part of the Credential Keys Managed control that ensures your company has an established key management process in place to support the organization's use of cryptographic techniques.

WHAT TO DO IF A TEST FAILS

If Drata finds that an Encryption policy either does not exist or has not been approved within the last 12 months the test will fail.

To remediate a failed test, you will need to either upload or build an Encryption policy within Drata or notify the owner to click 'Approve Policy' as soon as possible.

HELPFUL RESOURCES

Did this answer your question?