Hi Cycle team 👋

We’d love to see support for encryption at rest — either at the server disk level or at the individual volume level.

For teams deploying workloads in third-party virtualized environments, this is becoming a pretty standard requirement.

⸻

Why We’re Asking

When running in a virtual provider environment, we don’t physically control the underlying hardware. Even though TLS handles encryption in transit, we still need guarantees around data stored on disk.

For many companies (especially those dealing with customer or regulated data), encryption at rest isn’t optional — it’s table stakes for production.

This impacts things like: • Enterprise security reviews • SOC 2 / ISO 27001 compliance • GDPR / HIPAA workloads • Internal security policies • Risk mitigation around snapshots / host access

Without it, some workloads just can’t move onto the platform.

⸻

What Would Help

Any of the following would be great:

1️⃣ Host-Level Disk Encryption • All server disks encrypted by default • Transparent to containers • Configurable per environment if needed

2️⃣ Volume-Level Encryption • Encryption on specific persistent volumes • Visible status in the UI and API • Clear documentation on how it’s implemented

3️⃣ Key Management Options (Stretch Goal) • Bring Your Own Key (BYOK) support • Key rotation visibility