We live in times where data breaches, CLOUD act and regulatory requirements ask for increased sovereignty and protection for our data. Beyond encrypting at rest and in transit, we also can now encrypt data in use. This works by using specialised hardware and so called TEEs (Trusted Execution Environments) which can block out completely any nosy provider or data thief. This talk explores how confidential computing isolates workloads at the chip level, ensuring that even cloud providers cannot access protected data. You will gain an overview of its core principles, current adoption patterns, and practical use cases across industries handling sensitive workloads...from confidential VMs, confidential Containers or even enclave specific applications for specialized sensitive tasks.