Fortanix for Snowflake

Secure your sensitive Snowflake data and achieve privacy compliance with external tokenization as a service.

Download Solution Brief

hero image


Fortanix and Snowflake offer an easy to implement and cost-friendly external tokenization service that allows customers to seamlessly tokenize sensitive data inside and outside Snowflake. Fortanix Data Security Manager SaaS (DSM SaaS) seamlessly integrates with SnowFlake to offer a highly scalable solution that can be deployed in minutes

Top Benefits


Integrated data security platform with ‘Single Pane of Management’.

Fortanix Data Security Manager SaaS (DSM SaaS) is an integrated data security as a service that provides secure key management and cryptography services including cloud key management, secret management, and tokenization to protect sensitive data in public, private, hybrid or multicloud environments. Built-in encryption, key management and tokenization supports a variety of interfaces like REST APIs, PKCS11, CNG, JCE, KMIP etc.

Achieve privacy compliance for personally identifiable information and sensitive data.

With data breaches on the rise, organizations are undergoing more intensive scrutiny by government regulatory bodies and concerned authorities. They are subject to regulations like PCI, DSS, HIPAA, GDPR, Schrems II etc. As organizations scale, it is critical to ensure that the sensitive data is protected and meets these compliance requirements. The Fortanix Tokenization service substitutes tokens for sensitive data using REST APIs to achieve privacy compliance. This helps eliminate the link to sensitive data and protect against data breaches and avoid regulatory penalties from data privacy regulations such as General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). Tokenization can also prevent insiders from accidentally or intentionally exposing customer data.

Eliminate risks of key compromise in shared infrastructure.

The sheer volume of users utilizing Cloud and SaaS services increases the risk of unauthorized access to sensitive data stored within the cloud. The external tokenization service helps Snowflake customers significantly reduce the chances of key secrecy being violated in a shared infrastructure, including by government officials or the CSP itself.

Cost-effective External Tokenization delivered as SaaS. No hardware or perpetual license required.

External tokenization offered as a service can be consumed based on a ‘Pay as you grow’ model based on required and expected operational volume. Tokenization has traditionally been a solution for the larger enterprise that can afford high cost of implementation and ongoing licensing. With Fortanix, customers get external tokenization as a service allowing them to manage their costs and get value quicker than traditional deployments.

How it Works?



Customers moving sensitive data and workloads from their on-prem environments to the cloud can tokenize this data sitting in the cloud instance before ingesting it to Snowflake.

Snowflake does not encrypt the data until the data is inside the Snowflake application. The data can be secured using the Fortanix DSM for cloud environments.

Once the data is tokenized inside the cloud, it’s ingested into Snowflake. Customers can then provide specific user-based control to the tokenized data.

Ready to test Fortanix Runtime Encryption?

request a demo