This paper deals with the main security services of data protection: integrity, authentication, nonrepudiation and confidentiality. It describes the different tools which may be used to achieve these security objectives: encryption, digital signature, access controls, integrity control, audit and certification. The French legislation concerning encryption has been recently updated in order to simplify the use of encryption techniques for personal data security. This legislation describes different authorization or reporting procedures according to the type of the request (application, equipment, import or export of encryption techniques) and the security level required.