Case Study: Leading Major European Energy Provider achieves GDPR-compliant, end-to-end encryption of business-critical and sensitive data with Thales CipherTrust

Leading Major European Energy Provider - Customer Case Study

Leading Major European Energy Provider operates a heterogeneous IT estate spanning AWS, GCP, Microsoft Azure, Salesforce and legacy on‑prem systems and faced the dual challenge of protecting business‑critical and sensitive customer data (BI, financial planning, grid statistics, HR) while meeting GDPR and Schrems II requirements. To address this, the customer chose Thales technologies—deploying Thales CipherTrust Manager together with Transparent Encryption, Cloud Key Manager (CCKM) and Database Protection—to enable encryption-at-source and centralized key control.

Thales’ implementation provided centralized key management, seamless automatic encryption at rest across on‑premises, multi‑cloud, Big Data and container environments, transparent database encryption, privileged‑user controls and detailed audit logging; CRYPTAS integrated and operates the CipherTrust KMS with Entrust nShield Connect HSMs as the root of trust. As a result, all business‑critical and sensitive customer data is encrypted at rest with keys retained under EU control, delivering regulatory compliance (GDPR/Schrems II), auditable access controls and high availability.