Pega Cloud uses data-at-rest encryption (DARE) in all Pega Cloud customer instances to help you secure your application data, as well as to help you comply with industry-standard security requirements. "Data at rest" refers to any content that is saved on a hard drive.

Encryption of data at rest is implemented for all sandbox and production environments. All customer data stored in volumes within a customer cloud environment is encrypted with 256-bit AES encryption. The key pairs used to encrypt the disk are created and managed by Pega Cloud Security Operations for each unique customer. These keys are rotated on a regular basis and are securely stored in an encrypted key store facility within Pega Cloud Operations.