Hi,
I’m not sure if this is something you should or want to be doing through individual SQL statements. If you need the data to be encrypted as it travels through your networks, that’s what SSL is for. Details can be found [here](https://community.denodo.com/docs/html/browse/6.0/platform/installation/postinstallation_tasks/enable_ssl_connections_in_the_denodo_platform_servers/enabling_ssl_in_denodo_platform_servers).
If you need additional protection for who can see what sensitive data, we have column level security available in Denodo. This can mask or withhold the sensitive data, and is enforced within the query engine. Some details regarding those features can be found [here](https://community.denodo.com/answers/question/details?questionId=90670000000XcxvAAC&title=Encryption+and+Decryption+in+Denodo), and column level security can be set up under “advanced privileges” in role management.
Hope this helps!