AWS China Gateway

We recommend you consider the following check list while you plan business expansion to China

1. Use China local business entity
You could use your own China local entity to activate AWS China service. Otherwise, you could leverage APN hosting service partners to provide relevant support in China.

2. Work with partners
You may reach out to AWS to connect you with your preferred partners.

3. Regulation update
Consult your legal counsel and stay connected with AWS for latest regulation updates.

4. Cross border connectivity and data governance

• The connection - make sure to procure services from authorized providers for
  VPN, leased line or SD-WAN
• Data governance– work with AWS to design best practice that suit your data governance requirements.

5. Decide your payment method
You can directly pay AWS China or pay via APN partners.

1. Business Model

Potential service offering models: a. Wholly foreign-owned enterprise (“WFOE”) model; b. Local partner model; c. The variable interest entity ("VIE") model; d. Distribution model

2. Business License

A business license in China is an official license that all entities (including Chinese-owned companies) operating in China, are required to have. A Chinese business license contains a wealth of information about a company, including its name, registration number, legal representative, business scope, registered capital, and date of establishment. Other essential details on the license may include the company’s registered address, operating status, and the issuing authority. These details are crucial for conducting business in China and are necessary for opening a bank account, signing contracts, and obtaining permits and licenses.

• General (for all industries)

        1. ICP Filing

Any public facing website hosted in China should have an ICP filin g. Sinnet and NWCD are required by law to verify customers’ ICP filing and other applicable license before unblocking 80/8080/443 ports for the customer. Your AWS China Regions business development manager can share our experience and understanding relating to common regulatory issues for reference, if you have further questions on this topic.

Your AWS China Regions business development manager can work with Sinnet and NWCD to help you navigate the ICP filing process. Generally, a customer needs to provide basic information of its Chinese entity (e.g. company name. business license, etc.), contact information and scan copy of ID of a responsible person of the Chinese entity (usually the legal representative or IT head), top-level domain name, and a public IP (for AWS China Regions’ customers, normally this would be Elastic IP or ELB reserved IP) linked to the top-level domain name. More details for assistance with customers’ ICP filing process can also be found on Sinnet and NWCD websites:

(1) Sinnet

(2) NWCD:  (only available in Chinese)

Within 30 days after completing the ICP filing, submit the ICP filing information to National Internet Security Management Service Platform.

contact us

• Industry specific (use Telecom Catalogue as an example) 

            1. ICP License

The ICP (Internet Content Provider) license is a type of value-added telecom (“VAT”) license in China for operating websites, blogs, forums, e-commerce platforms, or any other online platforms that publish content accessible within China. It serves as a mechanism to regulate and manage online content in accordance with applicable Chinese laws and regulations.

            2. IRC (Internet Resource Collaboration)

If a cloud-based service involves “the provision of data storage, internet application development environment, internet application deployment, operation and management services to users by virtue of the equipment and resources deployed in data centers, with the feature of accessibility on demand, usage as needed, capacity of expansion on demand and collaborative sharing through internet or other networks”, such a service constitutes the “internet resource collaboration (IRC) service”, which is a type of value-added telecom (“VAT”) service. The service provider of the IRC service is obligated to obtain a VAT Service License prior to providing such services.

            3. PaaS & SaaS

• Public Security Bureau Filing

Please refer to National Internet Security Management Service Platform website.

• MLPS - Multi-Level Protection Scheme

The multi-level protection scheme (“MLPS”) is core part of the Chinese cybersecurity legal regime. It requires network operators classify their networks into different security levels scaling from Level 1 to Level 5 and undertake the corresponding level of cybersecurity obligations. Your AWS China Regions business development manager can share our experience and understanding relating to common regulatory issues from technical perspective for reference, if you have further questions on this topic.

Please visit AWS China Region website for more details

• CII - Critical information infrastructure

According to the regulation, critical information infrastructure refers to important network infrastructure and information systems in public telecommunications, information services, energy sources, transportation and other critical industries and domains, in which any destruction or data leakage will have severe impact on national security, the nation’s welfare, the people’s living and public interests. Please refer to Regulations on the Protection of Critical Information Infrastructure Security for details.

            1. Data Governance

Please refer to Data Security Law of the People's Republic of China (2021).

            2. Personal Information

Please refer to Personal Information Protection Law of the People's Republic of China (2021) .

• Data Local Storage & Cross-Border Transfer

Multiple AWS Partners can assist in cross-border link transmission, keeping in mind that all cross- border connection services are ultimately delivered by or through the telco carriers in China (China Unicom, China Telecom and China Mobile), and data owner must make sure the transit complies with the applicable regulatory requirements on cross-border data transfer. For additional details, refer to the telco carriers’ respective websites:

            1. China Telecom

            2. China Unicom

            3. China Mobile

• Real Name Verification

According to applicable Chinese laws and regulations, cloud users must complete real-name registration on the China regions website when purchasing and using cloud services in Chinese mainland.

• AWS Compliance Programs
• Finance system (SAP) backup

Finance system (SAP) backup refers to the process of creating a backup or copy of the data and configurations within the SAP financial accounting system which is crucial for data protection, disaster recovery, and business continuity. 

Contact AWS China Global Account Team: aws-g2c@amazon.com

1. Network Infrastructure

Both AWS China (Beijing) Region and the AWS China (Ningxia) Region have three availability zones each; in addition, there are four POP (Points-of-Presence) sites in Beijing, Shanghai, Shenzhen and Zhongwei. All regions and POPs are connected to each other via high-speed fiber, which meets the high technical standards of the AWS network infrastructure and delivers consistently reliable performance for customers across the country.
AWS also has a region in Hong Kong and a POP site in Taipei. Taiwan Region (with 3 Available Zones) will be launched in 2025. These are part of the AWS global network and are not directly connected to the AWS China Regions.

The AWS China (Beijing) Region and AWS China (Ningxia) Region are not directly connected to the AWS global network per Chinese governmental regulations. Customers can apply for Amazon Direct Connect (DX) service for better network performance within Chinese mainland. Customers may also use services from AWS Partners to optimize their international network speed.

Considering the overall Chinese customer experience and the requirements of current and future regulations in China, international customers may consider deploying workloads targeted at Chinese end users within AWS China Regions.

2. Data sovereignty and data governance

According to the PRC Data Security Law (“DSL”) and the PRC Personal Information Protection Law (“PIPL”) – certain data that collected and generated in Chinese mainland is subject to data localization requirement, and the cross-border transfer of that data must satisfy certain conditions and procedures as administered by the Cyberspace Administration of China.

3. Security

AWS China Regions and other AWS global regions use the same technology and follow the same rule of “shared responsibility” with our customers on data security. If you store or process data (including personal information or important data) by using services in AWS China Regions, your data will be stored within AWS China regions and will not be moved outside of AWS China Regions except as necessary to comply with the applicable law or requests of governmental or regulatory authorities.

When storing or processing data by using services in AWS China Regions, you are responsible for your content and for security in the cloud, including security of your content and the personal information included in your content, and you are ultimately responsible for your own compliance with the relevant data privacy requirements.

The operators of AWS China Regions are responsible for managing the security of the underlying cloud environment, and implement and maintain technical and organizational security measures applicable to the cloud infrastructure services under both global and China-specific security assurance frameworks and certifications.

1. Business Model

AWS China (Beijing) Region and AWS China (Ningxia) Region are the two AWS regions located within Chinese mainland. To provide the consistent experience for customers in China and to comply with China’s legal and regulatory requirements, AWS collaborated with two China local operating partners - Beijing Sinnet Technology Co., Ltd. (“Sinnet”) and Ningxia Western Cloud Data Technology Co., Ltd. (“NWCD”) - who have the proper telecom licenses required to deliver cloud services. These local operating partners operate and provide AWS services to local customers, while AWS provides its industry-leading technology, guidance, and expertise to NWCD and Sinnet.

AWS China Regions offer many of the same services as those available within other AWS regions, but AWS China Regions are separately operated by our local China partners. Because of this, customers who wish to use AWS China Regions are required to sign up for a separate set of account credentials solely for AWS China Regions. Customers will not be able to use those accounts for AWS China Regions to access services in other AWS Regions, and vice versa.

2. Product and service offering

• Product - AWS China Region customers have the similar console experience as other AWS Regions. Generally speaking, developers won’t need additional training to use AWS services in AWS China Regions, which use the same APIs, SDKs, and CLIs used in other AWS Regions. Learn more about AWS products and features here
• Services list - New service and features are launched every week in AWS China Regions. For the latest information, please visit Services list.
• Pricing - As with other AWS Regions, AWS China Regions have a variety of price offerings to address customers’ different needs, including Reserved Instances (RI) and Spot Instances and etc. 

3. China partner and marketplace resource

There is a vibrant partner community in China who are providing local end-to-end services or offering their products to support customers ramping up their businesses in China more effectively. AWS Consulting Partners provide customers with migration, integration, transformation, consulting, DevOps and application development services, while AWS Technology Partners provide software technologies or products to enrich AWS’s services in China. More information about China AWS Partners can be found at here.

As AWS China Regions’ operations are separate from other AWS global operations, a set of credentials that are distinct and separate from other AWS global accounts is required. Specifically, customers who wish to use AWS services in China must create an AWS China Account. Currently only commercial users can obtain cloud service accounts in China, as AWS China Regions do not support individual personal account registration. Sinnet and NWCD are subject to real name verification requirements under CSL and Anti- Terrorism laws. To meet this requirement, customers must submit their identity information before they create accounts for AWS China Regions or use AWS China services. Customers will need to make sure they have the following items in order to create an account, including among others:

• A scanned copy of its Chinese business license
• An email address with corporate domain name for registration
• A local China contact person with a scanned copy of photo ID, email, and mobile phone number
  

Once the account is created, customers can create additional accounts associated with the
initial account registration. China region sign up process / sign up

Basic Requirements:

• A scanned copy of its Chinese business license
• An email address with corporate domain name for registration (Optional)
• A local China contact person with ID, Chinese name, email, and mobile phone number

Customers who plan to use AWS services in AWS China Regions must sign up for a separate set of account credentials that are distinct and separate from other AWS global accounts and need to enter into to customer agreements with each of Sinnet and NWCD respectively. Legal terms for the AWS China (Beijing) Region and AWS China (Ningxia) Region, including Sinnet Customer Agreement for AWS China (Beijing Region) and NWCD Customer Agreement for AWS China (Ningxia Region) can be found at here.

1. Multi - level protection scheme

The multi-level protection scheme (“MLPS”) is core part of the Chinese cybersecurity legal regime. It requires network operators classify their networks into different security levels scaling from Level 1 to Level 5 and undertake the corresponding level of cybersecurity obligations. Your AWS China Regions business development manager can share our experience and understanding relating to common regulatory issues from technical perspective for reference, if you have further questions on this topic.

Please visit AWS China Region website for more details

2. Cross boarder data transfer

*(Details from video starting from 15:20)

3. Compliance

*(Compliance details from video “Extend your success with AWS”, starting from 21:00)
*Solution provided by AWS & Partners for MLPS, CBDT and other sensitive data compliance from video “Extend your success with AWS”)

Any public facing website hosted in China should have an ICP filin g. Sinnet and NWCD are required by law to verify customers’ ICP filing and other applicable license before unblocking 80/8080/443 ports for the customer. Your AWS China Regions business development manager can share our experience and understanding relating to common regulatory issues for reference, if you have further questions on this topic.

Your AWS China Regions business development manager can work with Sinnet and NWCD to help you navigate the ICP filing process. Generally, a customer needs to provide basic information of its Chinese entity (e.g. company name. business license, etc.), contact information and scan copy of ID of a responsible person of the Chinese entity (usually the legal representative or IT head), top-level domain name, and a public IP (for AWS China Regions’ customers, normally this would be Elastic IP or ELB reserved IP) linked to the top-level domain name. More details for assistance with customers’ ICP filing process can also be found on Sinnet and NWCD websites:

• Sinnet
• NWCD:  (only available in Chinese)

Within 30 days after completing the ICP filing, submit the ICP filing information to National Internet Security Management Service Platform.

contact us

AWS services in Chinese mainland are priced and billed in local currency, namely Chinese Yuan (CNY), and are processed by Sinnet and NWCD depending on which region you are using. Customers will receive a monthly invoice based on AWS service usage in AWS China Regions. This invoice will be sent to the email address of the customer’s AWS China account owner, and the bill can also be accessed from AWS China service console. Customers must remit payment via either wire transfer or online transfer.

Payment must be settled in CNY through a local bank account in China. Consolidated billing is supported, and some AWS consulting partners in China provides billing services to help their customers settle AWS China services’ payment.

1. Partner Network

The number of AWS partners in China has grown into thousands, including both global partners and local partners, from consultancy partners, to SIs and ISVs, providing both global solutions and local industry vertical solutions. Find out more.

AWS Marketplace China operated by NWCD, officially launched in January of 2020, now offers more than 150 software products across several categories such as operating system, security, network infrastructure, big data, and business analytics. Find out more in AWS Marketplace (China Region) operated by NWCD.

2. Find partner solutions

3. Contact us

Global and China AWS work as ONE team along the whole customer journey. Together with our vibrant partner network and local expertise in professional service, solution architects and support, we provide you with a hassle-free operational mechanism for ‘Global-to-China’ landing.

1. AWS ProServe

AWS China Professional Services (The "ProServe”) in China consists of professionals with extensive industry practice knowledge and strong full-stack solution competency.

As one of Proserve’s offerings in China, AWS China ProServe have supported many multinational companies localize their headquarters aligned landing zone design, migrate to AWS China regions and work properly complying to customers’ global requirement. This has helped global customers easily roll out their applications to China and effectively support customers’ worldwide programs’ execution and business development. You can also visit AWS Professional Services website for more details.

2. Enterprise support

One-to-one support for fast response channel is provided with experienced technical support engineer, all day without break for the year (24x7x365) for customer service. This service helps customers of all sizes and technical capabilities provided by the successful use of the AWS products and features.

If you are interested in AWS Support, please create a case in Support Center or email support@amazonaws.com.cn for AWS China region support plan subscription and change. You can also visit AWS Support website for more details.