I would like to know who has access to encryption keys?who can view encrypted data? I thought its DBA responsibility to decide this but came to know that its based on information security policy guidelines. Is that true? Can anyone help?