We’re excited to announce that we’re building Key Management Service (KMS) and Secret Manager for Thalassa Cloud. These security services will provide the foundation for secure application development on our Dutch public cloud platform.
Modern cloud-native applications need more than just basic infrastructure. They require robust security & Encryption services that integrate seamlessly with your development workflow. While we already offer IaaS, Kubernetes as a Service and databases, we’re expanding our platform to include the fine graind encryption services.
Our KMS will provide key management and encryption services designed for modern applications. The service will handle symmetric and asymmetric encryption for data at rest and in transit, with automatic key rotation on schedule or on-demand. We’re building in policy-based access control with fine-grained permissions, full audit logging for compliance and security monitoring, and Dutch datacenter hosting for complete data sovereignty. The service will include REST API integration for seamless application integration and built-in GDPR and NIS2 compliance.
Our Secret Manager will offer secrets management with direct KMS integration. The service will provide secure storage for API keys, passwords, certificates, and configuration secrets, with automatic secret rotation to maintain security. Each secret will be encrypted at rest using our KMS, with an API-first design for automation and audit trails for compliance. The service will support multiple secret types including API keys, passwords, and configuration secrets, all protected with their encryption keys.
Many development teams struggle with the operational complexity of running their own key management and secrets management infrastructure. Services like OpenBao, HashiCorp Vault, or self-hosted KMS solutions require significant operational overhead - from initial setup and configuration to ongoing maintenance, monitoring, and security updates. Our KMS and Secret Manager eliminate this burden by providing fully managed services that development teams can use immediately without worrying about infrastructure management or security patches.
Many Dutch software companies are currently using AWS KMS or other services from large Cloud providers for their security needs. This creates significant challenges around data sovereignty concerns with foreign cloud providers, and vendor lock-in to foreign cloud platforms. Our KMS and Secret Manager will provide a Dutch alternative that addresses these concerns.
We’re currently in active development and plan to launch a beta later this year. We want to work closely with early adopters to ensure these services meet the needs of Dutch software teams.
You can sign up for the waiting list through the console, under the KMS tab. Once we open the waiting list, your organisation will receive access to the KMS and Secret Management services.
As a beta participant, you’ll get early access to KMS and Secret Manager before general availability, with a direct feedback loop to our engineering team. You’ll receive priority support during the beta period and have influence on feature development based on your needs. Beta participants will also receive special pricing for early adopters.
While we’re building these services, you can already start using Thalassa Cloud for your other infrastructure needs. Our Kubernetes as a Service, databases, and IaaS are all available today.
European Public Cloud
Deploy and manage your cloud-native applications with our European based public cloud. Access powerful APIs, Kubernetes orchestration, and DevOps tools designed for modern infrastructure.
EU Data Sovereignty
Terraform & REST API
Self-Service Kubernetes as a Service
NVMe Storage, CPU and network
Code. Ship. Scale. • Pay-as-you-go pricing
Interested in learning more about our development process or want to discuss your specific security requirements? Contact our team for a personalized discussion.
Thalassa Cloud
