I am wanting to know what ways to attempt to do this. I want to set up an ASP >NET database service. The database (MySQL) will be hosted by a web hosting company which mya not be secure. I am thinking the best way to store clients' data would be to encrypt it, but how would I accomplish this? I can not store the encryption in the database and since it will be browser based, I do not want to store the keys on the client's PC. I want them to login and have access to their data, but do not want anyone else to have access to it and make it very secure. What would be the best way to do this?