Amazon Neptune Now In-Scope for PCI DSS and ISO Compliance Programs
You can now use Amazon Neptune in applications that are subject to PCI compliance or require ISO certification. Neptune is a fast, reliable, fully-managed graph database service that makes it easy to build and run applications that work with highly connected datasets.
Amazon Neptune has been added to the scope of our Payment Card Industry Data Security Standard (PCI DSS) certification, which means you can use it to process, store, or transmit payment information. You can download the PCI Compliance Package in AWS Artifact to learn more about how to achieve PCI Compliance on AWS.
Amazon Neptune is now also covered under AWS’s ISO 9001, 27001, 27017, and 27018 certifications. These certifications are among the most recognized global security standards attesting to quality and information security management in the cloud, and the protection of personally identifiable information.
In addition to meeting standards for PCI compliance and ISO certification programs, Amazon Neptune is in scope for HIPAA eligibility. You can go to the Services in Scope by Compliance Program page to see a full list.