All data stored within the intelligentcontract databases is encrypted at rest as well as in transit, meaning that the data is secured against unauthorised access to the underlying storage media or interception of network traffic between the database server and other servers. The data that's encrypted includes the database itself as well as all logs, backups and snapshots. 


Similarly, all user file uploads are encrypted at rest within Amazon's S3 object storage service. Each file object is encrypted with a unique key, and then the key itself is encrypted with another key that is regularly rotated by AWS (our hosting partner).


In all cases where data is encrypted at rest, AES-256 (Advanced Encryption Standard with 256-bit keys) is used and encryption keys are managed by AWS.