OpenText Data Privacy & Protection Foundation (Voltage)
Secure data at scale with proven format-preserving data protection
KuppingerCole names OpenText a Leader in data securityGet the report
Future-proof data protection
Quantum computing is moving fast, putting pressure on outdated encryption. To meet evolving regulatory demands and avoid future exposure, organizations need high-performance, quantum-ready security that keeps data protected without slowing operations.
OpenText™ Data Privacy & Protection Foundation (DPP) (Voltage) helps you reduce risk, enable compliance, and secure data at scale. With quantum-ready, format-preserving protection, stateless key management, and deep integrations across cloud and hybrid IT, you can protect sensitive data without breaking workflows or analytics.
Why OpenText Data Privacy & Protection Foundation?
Protect sensitive data at scale across hybrid IT and analytics environments without disrupting operations. Simplify compliance, minimize breach risk, and secure information consistently from ingestion through analytics.
- Proven
Leverage NIST-approved privacy-enhancing technologies
Safeguard sensitive data without disrupting performance with NIST-standardized Format-Preserving Encryption (AES FF1).
Read the product overview - Persistent
Protect sensitive data throughout its lifecycle
Secure information at rest, in motion, and in use with persistent protection that enables safe analytics, collaboration, and cloud adoption.
Read the customer story - Preferred
Relied on by the world’s largest enterprises across 50+ countries
Safeguard billions of data events daily with proven expertise trusted by global leaders in finance, healthcare, and retail.
Read the infographic
We are fully compliant with the latest financial services regulations and thanks to OpenText we achieved this in a minimally invasive manner, without having to change our existing infrastructure. We protect our sensitive data very cost-effectively in a complex and distributed environment.
Read the customer story
Use cases
Enable privacy, compliance, and secure data analytics at scale. Protect sensitive information across hybrid IT environments with format-preserving protection and dynamic key management.
-
Enable enterprise-wide compliance with global privacy laws including GDPR, HIPAA, and PCI DSS. Protect personal data in databases, analytics platforms, and SaaS apps using centralized policy controls and leading privacy-enhancing technologies.
Read the customer story -
Mitigate cloud risks while enabling innovation. With persistent protection and platform-agnostic encryption, you can move sensitive workloads to Snowflake®, Google BigQuery™, and SaaS platforms without exposing PII or violating compliance requirements.
Read the blog -
Key features
Leverage trusted, standards-based data protection, flexible integration options, and centralized control to protect sensitive data across your enterprise without disrupting applications or performance.
Format-preserving encryption (FPE) and tokenization
Protects sensitive data with NIST-approved AES FF1 encryption and high-performance tokenization. Maintains usability and compliance with innovative field-level, deterministic protection.
Learn more
Stateless key management
Derives encryption keys dynamically on demand with no need for storage, replication, or backup. Simplifies operations while ensuring high performance and resiliency.
Learn more
Broad platform support
Supports diverse environments without disrupting existing systems including Microsoft® Windows®, Linux®, IBM® z/OS®, Apache® Hadoop®, Vertica™, Teradata®, Snowflake®, and more.
Centralized policy and access control
Manages access and enforces security policies in real time using integrations with Active Directory, OpenID, and certified HSMs for root-of-trust key generation.
Flexible integration
Connects with enterprise systems using REST APIs, native SDKs (Java, C#, .NET), and native database functions for structured and unstructured data.
Transparent data interception
Protects sensitive data in transit with OpenText™ Data Privacy & Protection Sentry, enabling interception for SaaS, COTS, and proprietary apps without code changes.
Learn moreHigh-value data protection
How to buy
OpenText Data Privacy & Protection Foundation
For teams needing to safeguard payments data at all points.
| PCI DSS compliance |
|---|
| Format-Preserving Encryption and Tokenization |
| Identity-Based Encryption (IBE) |
For teams needing to adopt of continuous data protection in multi cloud hybrid IT.
Cloud ETL services  |
|---|
| Streaming platforms |
| Cloud data warehouses and data lakes |
| SQL and NoSQL database services |
| Serverless compute services |
For teams needing to streamline data protection for cloud and applications without code modification.
| SaaS applications |
|---|
| COTS and in-house applications |
| Data intercept |
For teams needing simple standards-based protection for z/OS mainframe data.
| OpenText Data Privacy & Protection z Protect |
|---|
For teams needing to protect data for business applications.
| Native APIs |
|---|
| Public cloud |
|---|
| Off cloud |
Integrations
This cloud-agnostic solution integrates with leading platforms, making it easy to extend protection without sacrificing performance and increasing data breach risks. Secure data in motion, at rest, and during analytics across the cloud and data ecosystem.
AWS 
Databricks
Google Cloud 
Hadoop
Microsoft Azure
OpenText Analytics Database (Vertica)
Snowflake
Teradata
TrinoAccelerate the value of OpenText Privacy & Protection Foundation
Certifications
OpenText data protection technologies meet the highest global standards. Explore our certifications and validations—including FIPS 140-2, Common Criteria (ISO 15408), and NIST SP 800-38G—that help support privacy compliance and build customer trust.
-
FIP140-2 certified
OpenText encryption modules are FIPS 140-2 certified, meeting United States government standards for cryptographic security. Certification #2686 confirms compliance for use in regulated environments requiring strong data protection
-
NIST Standard SP 800-38G FF1
OpenText is the original innovator behind Format-Preserving Encryption (FF1), standardized by NIST in SP 800-38G. This validation ensures the OpenText implementation meets the highest cryptographic guidelines for protecting structured data
-
Common Criteria | ISO 15408
Certified under ISO/IEC 15408 (Common Criteria), the solution meets internationally recognized security standards for IT products. This certification supports procurement in highly regulated sectors, including government and finance
Deployment
OpenText offers a flexible deployment option for OpenText Data Privacy & Protection Foundation.
-
Free up resources, optimize performance, and rapidly address issues
OpenText Off Cloud Managed Services
Professional Services
OpenText Professional Services combines end-to-end solution implementation with comprehensive technology services to help improve systems.
-
Get a trusted partner to guide your information management path
Your journey to success
-
Accelerate your information management journey
Consulting Services
-
Propel your business into the future with modern solutions
NextGen Services
-
Unlock the full potential of your information management solution
Customer Success Services
Partners
OpenText helps customers find the right solution, the right support, and the right outcome.
-
Search OpenText's Partner directory
Find a Partner
-
Explore OpenText's Partner solutions catalog
Application Marketplace
-
Industry-leading organizations that enhance OpenText products and solutions
Strategic Partners
Communities
Explore our OpenText communities. Connect with individuals and companies to get insight and support. Get involved in the discussion.
-
Explore OpenText communities and connect with individuals and companies to get insight and support
Join the conversation and share ideas
Premium Support
Optimize the value of your OpenText solution with dedicated experts who provide mission-critical support for your complex IT environment.
OpenText Data Privacy & Protection Foundation resources
OpenText Data Privacy & Protection overview
Read the product overviewOpenText Data Privacy & Protection for cloud and analytics
Read the white paperOpenText Data Privacy & Protection Sentry
Read the data sheetOpenText Data Privacy & Protection Integrations for Snowflake
Learn moreTokens and tokenization
Learn moreOpenText Data Privacy & Protection overview
Read the product overviewOpenText Data Privacy & Protection for cloud and analytics
Read the white paperOpenText Data Privacy & Protection Sentry
Read the data sheetOpenText Data Privacy & Protection Integrations for Snowflake
Learn moreTokens and tokenization
Learn more
Data monetization: Privacy and data security in the age of analytics
Watch the video
How a telecom company monetized data under GDPR
Watch the videoEstablish trusted AI with DSPM best practices
Watch the webinarAI + unsecured data = financial risk
Watch the webinarEstablish trusted AI with DSPM best practices
Watch the webinarAI + unsecured data = financial risk
Watch the webinar-
In many cases, there is no impact. Applications often work with protected values without needing cleartext. When cleartext is needed, our cryptographic code is highly optimized for millions of operations per second.
-
Yes. Our format-preserving encryption ensures consistent results. Referential integrity is maintained across applications and environments without requiring frequent reprotection or re-encryption operations.
-
Format-preserving encryption supports translation between ASCII and EBCDIC. Data protected in ASCII can be converted to EBCDIC and decrypted correctly, with no impact on existing workflows between mainframes and distributed systems.
-
Yes. OpenText DPP uses 256-bit AES encryption, which maintains 128 bits of security even under optimal quantum attacks. It is the only symmetric encryption listed as quantum-resistant by the US DoD for commercial and government use.
-
OpenText DPP uses TLS standards for key exchange, allowing automatic adoption of NIST post-quantum algorithms. Customers will gain protection through regular TLS updates, without impacting existing encrypted data or requiring new deployments.
-
Tokenization replaces sensitive data with a reversible token. Data masking hides data but may allow reidentification. Anonymization permanently removes personal identifiers to prevent any connection to individuals.
KuppingerCole recognizes OpenText as a Leader in data security
Learn how OpenText leads by offering a smarter, data-centric approach to security.
Read the blog
Data security from the inside out: Unmasking insider threats
Little Red Riding Hood provides intriguing analogies for cybersecurity and insider threats.
Read the blog
Protecting sensitive data in the cloud with OpenText and Snowflake Horizon
Extend end-to-end data protection into Snowflake Horizon with our proven encryption technology.
Read the blog
Take the next step
