When an end-user visits Elium, the details of their interactions are securely transferred to Elium exclusively through connections over HTTPS. All data transmitted via HTTPS is encrypted, ensuring the protection of sensitive information. Cloud Platforms also encrypt customer data stored at rest by default. To enhance security, data is divided into subfile chunks for storage, and each chunk is encrypted at the storage level using a unique encryption key. This key, used to encrypt the data in a chunk, is referred to as a data encryption key (DEK). Given the high volume of keys managed by Cloud Platforms and the necessity for low latency and high availability, these keys are stored in close proximity to the data they encrypt. The DEKs themselves are further secured by being encrypted with a key encryption key (KEK).