Skip to main content

AWS Cloud Security

AWS Digital Sovereignty

More choice for your data

Benefit from the most advanced set of sovereignty controls, security features, and infrastructure options to meet your unique digital sovereignty needs

Contact us
AWS European Sovereign Cloud

More control, more choice

At AWS, we believe it is essential that our customers have control over their data and choices for how they secure and manage their data in the cloud. We give you the flexibility to choose how and where you want to run your workloads.

Read the AWS Digital Sovereignty Pledge

Infrastructure choice

AWS European Sovereign Cloud

The AWS European Sovereign Cloud is a new, independent cloud for Europe, designed to help customers meet their evolving sovereignty needs, including stringent data residency, operational autonomy, and resiliency requirements. The AWS European Sovereign Cloud will be the only fully-featured, independently operated sovereign cloud backed by strong technical controls, sovereign assurances, and legal protections designed to meet the needs of European governments and enterprises. 

 

Learn more about AWS in Europe

AWS Regions

The AWS Global Cloud Infrastructure consists of AWS Regions. Our customers benefit from a cloud built to meet the requirements of the most security-sensitive organizations. Since day one, our global infrastructure has been designed to provide exceptionally high resilience, security, and availability. Each AWS Region is comprised of multiple Availability Zones (AZ) and each AZ is made up of one or more data centers that contains redundant power, connectivity, and networking.

Learn more
Missing alt text value

AWS Dedicated Local Zones

To help customers in regulated industries and public sector organizations align with digital sovereignty requirements for their classified and other sensitive workloads, we introduced AWS Dedicated Local Zones. Dedicated Local Zones are a type of AWS infrastructure that is fully managed by AWS, built for exclusive use by a customer or community, and placed in a customer-specified location or data center to help comply with regulatory requirements. This includes enhanced security and governance controls, and options to enforce security clearance or other criteria on local AWS operating personnel.

Learn more

Strongest sovereignty controls

Our approach from the beginning has been to make AWS sovereign-by-design. We built data protection features and controls in the AWS Cloud with input from financial services, healthcare, and government customers—who are among the most security- and data privacy-conscious organisations in the world.

Our AWS Regions are powered by the AWS Nitro System which provides a strong physical and logical security boundary to enforce access restrictions so that nobody, including AWS employees, can access customer workloads or data running on Amazon Elastic Compute Cloud (Amazon EC2). The security design of the Nitro System has been validated by the NCC Group, an independent cybersecurity firm.

Learn how the Nitro System achieved independent third-party validation

Customers have full control of their data on AWS and determine where their data is stored, how it’s stored, and who has access to it. We provide tools to help you automate and monitor your storage location, including over 245 controls under the digital sovereignty category  in AWS Control Tower.

Learn about the digital sovereignty category in Control Tower

We offer features and controls to encrypt data, whether in transit, at rest, or in memory. All AWS services support encryption, and most services also support encryption with customer managed keys that AWS can’t access.

Read about how AWS can help with encryption

Dive deeper into resources on topics like portability, interoperability, transparency, assurances, data protection, and resilience.


Visit our European digital sovereignty frequently asked questions (FAQs)

Compliance with European regulations

We help you meet European laws and standards and achieve the highest levels of security, privacy, and resilience. With AWS, you can improve your ability to meet core security and European data privacy compliance requirements. We provide guidance to assist you in maintaining compliance, plus we offer a large network of partners who can help manage your compliance for you. We support the Cloud Infrastructure Services Providers in Europe (CISPE) Code of Conduct. Over 100 AWS services are certified as compliant with the CISPE Code of Conduct.

Missing alt text value