Overview of personal and sensitive data storage and removal options
Review what information is stored with IBM when you use IBM Cloud Kubernetes Service, how this data is stored and encrypted, and how you can permanently remove this information.
What information is stored with IBM when using IBM Cloud Kubernetes Service?
For each cluster that you create with IBM Cloud Kubernetes Service, IBM stores the information that is described in the following table:
Information type | Data |
---|---|
Personal information | The email address of the IBM Cloud account that created the cluster. |
Sensitive information |
|
How is my information stored and encrypted?
All information is stored in an etcd database and backed up every hour to IBM Cloud Object Storage. The etcd database and Object Storage service instance are owned and managed by the IBM Cloud SRE team. For each IBM Cloud account, a customer root key in IBM Key Protect is created that is managed by the IBM Cloud Kubernetes Service service team. This root key is used to encrypt all personal and sensitive information in etcd and in Object Storage.
Where is my information stored?
The location where your information is stored depends on the location your cluster is in. By default, your data is stored in the IBM Cloud Kubernetes Service multizone metro area that is closest to your cluster. However, IBM Cloud Kubernetes Service might decide to store your data in a different multizone metro area to optimize the utilization of available compute resources. If you create your cluster in a non-multizone metro area, your data is still stored in the closest multizone metro area. This location might be in a different country than the one where you created your cluster. Make sure that your information can reside in a different country before you create your cluster in a non-multizone metro area.
The data that you create and own is always stored in the same location as the cluster. For more information about what data you can create in your cluster, how this data is encrypted, and how you can protect this data, see Protecting sensitive information in your cluster.
How can I remove my information?
Review your options to remove your information from IBM Cloud Kubernetes Service.
Removing personal and sensitive information is permanent and not reversible. Make sure that you want to permanently remove your information before you proceed.
- Is my data removed when I remove the cluster?
- Deleting a cluster does not remove all information from IBM Cloud Kubernetes Service. When you delete a cluster, cluster-specific information is removed from the etcd instance that is managed by IBM. However, your information still exists in the IBM Cloud Object Storage backup and can still be accessed by the IBM service team by using the account-specific customer root key in IBM Key Protect that IBM owns and manages.
- What options do I have to permanently remove my data?
- To remove that data that IBM stores, choose between the following options. Note that removing your personal and sensitive information requires all your clusters to be deleted as well. Make sure that you backed up your app data before your proceed.
- Open an IBM Cloud support case: Contact IBM Support to remove your personal and sensitive information from IBM Cloud Kubernetes Service. For more information, see Getting support.
- End your IBM Cloud subscription: After you end your IBM Cloud subscription, IBM Cloud Kubernetes Service removes the customer root key in IBM Key Protect that IBM created and managed for you as well as all the personal and sensitive information from the etcd data store and Object Storage backup.