This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 37%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Hello,
In App Protection Policy there is an option to encrypt org data. Is this some additional encryption prior to normal iPad encryption?
Yes, this is an additional mechanism and layer to protect the data specific to the app itself. Device encryption doesn't preclude a malicious actor running on the device itself from potentially reading data from another app that it shouldn't have access to.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Hi,
Agree with Jason, for the "Encrypt Org data" setting under app protection policy, it is an additional option and data marked as "corporate" is encrypted according to the IT administrator's app protection policy.
For device encryption, based on my understanding, it is hareware level encryption. We can see more details in the following link:
https://support.apple.com/en-sg/guide/security/sece3bee0835/web
Note: Non-Microsoft link, just for the reference.
Hope it can help.