...
When you delete an instance, the data in its attached volumes is not destroyed.
Log in to the dashboard, choose choose a projectproject, and click Volumes.
Select the check boxes for the volumes that you want to delete.
Click Delete Volumes and confirm your choice. A message indicates whether the action was successful.
Storing of sensitive data
Sensitive data can be stored on special encrypted Cinder Volume of type LUKS.
By using the Openstack dashboard, every user can create such volumes and then attach them to a virtual machine.
The user can access the data stored in such LUKS volumes by login into the corresponding virtual machine. Only the users with authorisation to login into the virtual machine will access the data "in clear", even if it is encrypted by key.
The keys used by the Openstack volume encryption feature are managed by Barbican, the official OpenStack Key Manager service. Barbican provides secure storage, provisioning and management of secret data. This includes keying material such as Symmetric Keys, Asymmetric Keys, Certificates and raw binary data.
...
...