An EU official works on an EU mission abroad and needs to share confidential documents with colleagues from different Member State defense ministries via a public cloud platform. According to EU digital security principles and data governance (including the context of the Common Security and Defence Policy - CSDP), what is the most critical cybersecurity measure that must be implemented to ensure data protection during storage and transmission, without violating data sovereignty or compromising the mission's operability?