Ensure that Voice domains created under Amazon Connect instances are using desired KMS encryption level.
All user data stored in Amazon Connect Voice ID is encrypted at rest using encryption keys stored in AWS Key Management Service. Additionally, you can provide customer managed KMS keys in order to gain more control over encryption/decryption processes.
Ensure that Amazon Voice ID domains have encryption enabled.