{"id":"azuresql-always-encrypted-client-side-keys","text":"Always Encrypted keeps encryption keys on the client side; even DBAs cannot see plaintext data.","truth_value":"IN","source":"entries/2026/03/10/azuresql-security.md","source_url":"","source_hash":"9180bb356c162c2c","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"azuresql-always-encrypted-client-side-keys","truth_value":"IN","reason":"premise"}]}}