You are designing a payments processing application on Google Cloud. The application must continue to serve requests and avoid any user disruption if a regional failure occurs. You need to use AES-256 to encrypt data in the database, and you want to control where you store the encryption key. What should you do?

A. Use Cloud Spanner with a customer-managed encryption key (CMEK). B. Use Cloud Spanner with default encryption. C. Use Cloud SQL with a customer-managed encryption key (CMEK). D. Use Bigtable with default encryption.