The Data Encryption security policy has been removed in this release due to outdated encryption driver technology that is not supported on Windows 10 or later. As previously announced, the Microsoft Data Encryption policy is the replacement for the Data Encryption policy and uses BitLocker encryption technology for removable drive encryption.
During system update, any Data Encryption policies you have created will be deleted from your system resulting in the policies being removed from any managed devices to which they were assigned. If you are still using the Data Encryption policy, before applying Update 3, you have the following options:
Keep the Data Encryption policy assigned to devices and configure and apply the Microsoft Data Encryption policies to those same. The Microsoft Data Encryption policy will take affect over the Data Encryption policy; when a user inserts a removable drive encrypted by the Data Encryption policy, it will be automatically decrypted and re-encrypted with the Microsoft Data Encryption policy. Give users notice that they need to transition all drives before the date you plan on doing your system update.
Remove the Data Encryption policy and distribute the ZESM Standalone Decryption Utility (ZCC > Home > Download ZENworks Tools > Endpoint Security) to users to allow them to decrypt removable drives. For information about using the tool, see File Decryption Utility.
For more information about the Microsoft Data Encryption policy, see Microsoft Data Encryption Policy.