This folder contains security-related documentation for the DOL-MCNJ application.
For a fresh start migration from Mailchimp:
- Follow
../deployment/ENCRYPTED_SIGNUP_DEPLOYMENT.mdfor complete deployment steps - Review
ENCRYPTION_GUIDE.mdfor technical details - Reference
KMS_KEY_MANAGEMENT.mdfor AWS setup
ENCRYPTION_GUIDE.md- Encryption implementation overviewPII_SAFETY_AWS_GUIDE.md- PII safety measures and loggingKMS_KEY_MANAGEMENT.md- AWS KMS setup and management
../deployment/ENCRYPTED_SIGNUP_DEPLOYMENT.md- Complete deployment guide
- Always Encrypted: All signup emails are encrypted by default
- Fresh Start: No legacy data migration needed
- PII Safe: All logging and error handling protects sensitive data
- AWS KMS: Enterprise-grade key management
- Search Capable: Encrypted data with searchable hashes for duplicates