Data Security and Compliance

Email Data Encryption Mechanism

To ensure user data security and privacy protection, EngageLab has established a unified encryption and access control mechanism for email address data at the platform level.

All email address data is protected using the AES-256 encryption standard, ensuring security and integrity during both storage and processing.

Scope of Coverage

The encryption mechanism applies to all sources of email data, including:

• Contact list uploads
• Email data written via API interfaces
• Data generated during internal system synchronization and processing

Data Storage

All email addresses are automatically encrypted upon entering the system and stored in ciphertext form. No plaintext email data is retained in the system.

Data Usage and Processing

During email sending and business processing, email data is only temporarily decrypted within a controlled runtime environment to complete necessary sending and matching logic.

The platform does not expose any plaintext email data at the storage layer, minimizing the risk of data leakage.

Due to the encrypted storage structure, email query capabilities are restricted: only exact match search (Exact Match) is supported. Fuzzy search, substring search, and partial email queries are not supported.

Impact on Existing Features

Q: Does the encryption mechanism affect email sending?

A: No. Email sending workflows, API usage, and performance remain unchanged.

Q: Does it affect data reporting or contact management?

A: No. Analytics reports, contact segmentation, and tagging features function normally.

Q: Do developers need to make any changes?

A: No. Existing APIs and data structures remain fully compatible without any adjustments.