Newer Version Available
Encrypt New Data in Fields
Select the fields you want to encrypt. For best results, encrypt the smallest possible number of fields.
| Available as an add-on subscription in: Enterprise, Performance, and Unlimited Editions. Requires purchasing Salesforce Shield. Available in Developer Edition at no charge for orgs created in Summer ’15 and later. |
| Available in both Salesforce Classic and Lightning Experience. |
| User Permissions Needed | |
|---|---|
| To view setup: | View Setup and Configuration |
| To encrypt fields: | Customize Application |
Depending on the size of your organization, enabling a standard field for encryption can take a few minutes.
- Make sure that your organization has an active encryption key. If you’re not sure, check with your administrator.
- From Setup, in the Quick Find box, enter Platform Encryption, and then select Encryption Policy.
- Click Encrypt Fields.
- Click Edit.
-
Select the fields you want to encrypt.
All new data entered in this field is encrypted. By default, data is encrypted using a probabilistic encryption scheme. To apply deterministic encryption to your data, select Deterministic from the Encryption Scheme list. To read more about deterministic encryption, see “How Deterministic Encryption Supports Filtering” in Salesforce Help.
- Click Save.
The automatic Platform Encryption validation service checks for settings in your
organization that can block encryption. You receive an email with suggestions for fixing
any incompatible settings.
Field values are automatically encrypted only in records created or updated after
you’ve enabled encryption. Contact Salesforce to update existing records so that their
field values are encrypted.