- AWS›
- Security, Identity, and Compliance›
- Digital Sovereignty at AWS
More choice for your data
Benefit from the most advanced set of sovereignty controls, security features, and infrastructure options to meet your unique digital sovereignty needs
More control, more choice
At AWS, we believe it is essential that our customers have control over their data and choices for how they secure and manage their data in the cloud. We give you the flexibility to choose how and where you want to run your workloads.
Infrastructure choice
European Sovereign Cloud
The AWS European Sovereign Cloud is a new, independent cloud for Europe, designed to help customers meet their evolving sovereignty needs, including stringent data residency, operational autonomy, and resiliency requirements. The AWS European Sovereign Cloud is the only fully-featured, independently operated sovereign cloud backed by strong technical controls, sovereign assurances, and legal protections designed to meet the needs of European governments and enterprises.
Regions
The AWS Global Cloud Infrastructure consists of AWS Regions. Our customers benefit from a cloud built to meet the requirements of the most security-sensitive organizations. Since day one, our global infrastructure has been designed to provide exceptionally high resilience, security, and availability. Each AWS Region is comprised of multiple Availability Zones (AZ) and each AZ is made up of one or more data centers that contains redundant power, connectivity, and networking.
Dedicated Local Zones
To help customers in regulated industries and public sector organizations align with digital sovereignty requirements for their classified and other sensitive workloads, we introduced AWS Dedicated Local Zones. Dedicated Local Zones are a type of AWS infrastructure that is fully managed by AWS, built for exclusive use by a customer or community, and placed in a customer-specified location or data center to help comply with regulatory requirements. This includes enhanced security and governance controls, and options to enforce security clearance or other criteria on local AWS operating personnel.
AI Factories
Leveraging nearly two decades of AWS cloud expertise, AI Factories help customers eliminate years of build effort and maintenance. Customers provide a data center and power, AWS will deploy a dedicated, secure, and fully managed AI infrastructure. Customers can meet their data sovereignty and security requirements with dedicated deployments built exclusively for them.
Strongest sovereignty controls
Our approach from the beginning has been to make AWS sovereign-by-design. We built data protection features and controls in the AWS Cloud with input from financial services, healthcare, and government customers—who are among the most security- and data privacy-conscious organisations in the world.
Our AWS Regions are powered by the AWS Nitro System which provides a strong physical and logical security boundary to enforce access restrictions so that nobody, including AWS employees, can access customer workloads or data running on Amazon Elastic Compute Cloud (Amazon EC2). The security design of the Nitro System has been validated by the NCC Group, an independent cybersecurity firm.
Learn how the Nitro System achieved independent third-party validation
Customers have full control of their data on AWS and determine where their data is stored, how it’s stored, and who has access to it. We provide tools to help you automate and monitor your storage location, including over 245 controls under the digital sovereignty category in AWS Control Tower.
Learn about the digital sovereignty category in Control Tower
We offer features and controls to encrypt data, whether in transit, at rest, or in memory. All AWS services support encryption, and most services also support encryption with customer managed keys that AWS can’t access.
Dive deeper into resources on topics like portability, interoperability, transparency, assurances, data protection, and resilience.
Visit our European digital sovereignty frequently asked questions (FAQs)
Compliance with European regulations
We help you meet European laws and standards and achieve the highest levels of security, privacy, and resilience. With AWS, you can improve your ability to meet core security and European data privacy compliance requirements. We provide guidance to assist you in maintaining compliance, plus we offer a large network of partners who can help manage your compliance for you. We support the Cloud Infrastructure Services Providers in Europe (CISPE) Code of Conduct. Over 100 AWS services are certified as compliant with the CISPE Code of Conduct.
