On 26 March 2018, Amazon announced that its AWS (Amazon Web Services) services are completely compliant with the General Data Protection Regulation (GDPR).
A quick reminder – GDPR is a new set of data protection and privacy laws which will take effect on 25 May 2018, to significantly enhance the protection of the personal data of EU citizens and increase the obligations on organizations that collect or process personal data.
Amazon announced that during the service readiness audit, their security and compliance experts confirmed that AWS has in place effective technical and organizational measures for data processors to secure personal data in accordance with the GDPR.
This means that, in addition to benefiting from all of the measures that AWS already takes to maintain services security, customers can deploy AWS services as a key part of their GDPR compliance plans.
“This announcement confirms we have completed the entirety of our GDPR service readiness audit, validating that all generally available services and features adhere to the high privacy bar and data protection standards required of data processors by the GDPR.”
– Chad Woolf, Vice President, AWS Security Assurance
Read more: Amazon AWS Blog