Hello @Nathan Buesgensโ , from a high level point of view, by default, notebooks source code and metadata in the control plane are encrypted at rest in AWS RDS using AWS KMS with a Databricks-managed Key.
But there is other data related to notebooks and things change depending on what kind of data you are referring to and how you use notebooks (interactive vs. jobs).
I would recommend to reach out to your account team and request a copy of the enterprise security guide which provides an in-depth description of Databricks' security posture.
Cheers,
Filippo
The compliance guy