Data Protection Technologies

SecMaster takes different measures to keep data secure and reliable.

**Table 1** SecMaster data protection methods and features
Method	Description
Static data protection	SecMaster encrypts sensitive data in your website traffic to keep the data from leakage.
Protection for data in transit	Data is encrypted when it is transmitted between microservices to prevent leakage or tampering during transmission. SecMaster keeps your configuration data secure as the configuration data is transmitted over HTTPS.
Data integrity verification	Data integrity is verified when SecMaster accesses cloud service alerts, vulnerabilities, and baselines. When the SecMaster core data plane process is started, the configuration data enters the reliable mode to ensure data integrity (in scenarios such as network jitter, delay, and configuration data retransmission and retry).
Data isolation mechanism	SecMaster isolates its tenant zone from its management plane. Operation permissions for CFW are isolated by user. Your policies and logs are isolated from those of others.
Data destruction mechanism	To prevent information leakage caused by residual data, Huawei Cloud sets different retention periods based on the customer level. If the customer does not renew the subscription or recharge the account after the retention period expires, the data stored in the cloud service will be deleted and the cloud service resources will be released. SecMaster automatically detects cloud service subscription status and releases resources when the retention period expires.

In addition, SecMaster fully respects user privacy, complies with laws and regulations, and does not collect or store any user privacy data. For more privacy data usage and protection issues, see Privacy Statement.

Parent topic: Security

Previous topic: Identity Authentication and Access Control

Next topic: Audit Logs