Salesforce Security Guide

Salesforce Security Guide
Salesforce Security Basics
Authenticate Users
Give Users Access to Data
Share Objects and Fields
Strengthen Your Data's Security with Shield Platform Encryption
Encrypt Fields, Files, and Other Data Elements With Encryption Policy
Encrypt Fields
Encrypt Fields on Custom Objects and Custom Fields
Encrypt New Data in Custom Fields in Salesforce Classic
Encrypt New Data in Custom Fields in Lightning Experience
Encrypt Files
Get Statistics About Your Encryption Coverage
Synchronize Your Data Encryption
Fix Blockers
Retrieve Encrypted Data with Formulas
Apply Encryption to Fields Used in Matching Rules (Beta)
Encrypt Data in Chatter
Encrypt Search Index Files
Encrypt Einstein Analytics Data
Filter Encrypted Data with Deterministic Encryption
Manage Shield Platform Encryption
Monitoring Your Organization’s Security
Security Guidelines for Apex and Visualforce Development
PDF

Newer Version Available

This content describes an older version of this product. View Latest

Encrypt New Data in Custom Fields in Salesforce Classic

Add encryption when you create a field in Salesforce Classic, or add encryption to new data entered in an existing custom field.
Available as an add-on subscription in: Enterprise, Performance, and Unlimited Editions. Requires purchasing Salesforce Shield. Available in Developer Edition at no charge for orgs created in Summer ’15 and later.
Available in both Salesforce Classic and Lightning Experience.

User Permissions Needed
To view setup: View Setup and Configuration
To encrypt fields: Customize Application

To apply deterministic encryption to custom fields, first enable deterministic encryption from the Platform Encryption Advanced Settings page in Setup.

  1. From the management settings for the object, go to Fields.
  2. In the Custom Fields & Relationships section, create a field or edit an existing one.
  3. Select Encrypted.
    All new data entered in this field is encrypted. By default, data is encrypted using a probabilistic encryption scheme. To apply deterministic encryption to your data, select a deterministic option listed under Encrypted.
  4. Click Save.
The automatic Platform Encryption validation service checks for settings in your org that can block encryption. You receive an email with suggestions for fixing incompatible settings.
Field values are automatically encrypted only in records created or updated after you’ve enabled encryption. Contact Salesforce to encrypt existing data.

This page is about Shield Platform Encryption, not Classic Encryption. What's the difference?

Note