Scaleway Key Manager

Name: Scaleway Key Manager
Brand: Scaleway

Managed encryption-key service for envelope encryption, with customer-managed keys (CMKs), HSM-backed key generation, and integration with Object Storage and Block Storage for at-rest encryption

FluffyStack tools

Add to Service Builder Add to Compare Compare with equivalents Explore Scaleway in Treemap Explore security in Honeycomb See Scaleway regions on the World Map See security as a network Score jurisdiction exposure

Documentation Pricing Scaleway website

Jurisdictional exposure

Provider HQ

EUParis, France

Subject to GDPR, Data Act, DGA

Region locations

EU5 regions

Sovereign option

Yes — 5 sovereign-flagged regions available

Full scorecard for this service →EU lens detail →Sovereign cloud coverage map →

Sub-services (2)

Customer-Managed Keys

Encryption keys with customer-controlled rotation

Envelope Encryption

Two-tier encryption with data keys wrapped by master keys

Compliance & Certifications

This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.

GDPR ISO 27001 SOC 2

Where this runs

5 regions

3 countries

5sovereign

Sovereign regions (5)

ParisScaleway Sovereign Cloud (EU)
Paris 2 · ParisScaleway Sovereign Cloud (EU)
Paris 3 · ParisScaleway Sovereign Cloud (EU)
AmsterdamScaleway Sovereign Cloud (EU)
WarsawScaleway Sovereign Cloud (EU)

Equivalent services on other platforms

AWS KMSAWS

Create and manage cryptographic keys for encryption at rest and in transit with AWS-managed, customer-managed, and imported keys, automatic rotation, and FIPS 140-2 validated HSMs

Azure Key VaultAzure

Centralised vault for cryptographic keys, secrets, and certificates with HSM-backed keys, managed certificate renewal, and RBAC or access-policy enforcement

Cloud KMSGCP

Cloud-hosted key management for encryption at rest with symmetric and asymmetric keys, customer-supplied keys, HSM-backed keys, and automatic rotation

OCI VaultOracle

Centralised key and secret management service with HSM-backed symmetric and asymmetric keys, automatic rotation, and envelope encryption for OCI resources

STACKIT Key Management ServiceSTACKIT

Managed encryption-key service with customer-managed keys, HSM-backed key generation, and integration with STACKIT Object / Block / File Storage for at-rest encryption

Pricing

Pricing model:per-key-month-plus-operations