AWS Artifact

No cost, self-service portal for on-demand access to AWS’ compliance reports.

AWS Artifact provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA).

You can access AWS Artifact directly from the AWS Management Console »


Reports on-demand

Globally available

Easy identification

Save time with on-demand access to AWS’ auditor issued reports, certifications, accreditations and other third-party attestations.

Validate the implementation and operating effectiveness of the AWS security control environment from any geography or vertical.

Easily identify the scope of each of the audit artifacts, including services, regions and applicable audit dates.

Quick assessments

Continuous monitoring

Enhanced transparency

Perform internal assessments of the security of AWS Services quicker.

Continuously monitor the security and compliance of AWS with immediate access to new reports.

Perform due-diligence anytime with enhanced transparency into the AWS control environment.

Available Reports

AWS Artifact provides several compliance reports from third-party auditors who have tested and verified our compliance with a variety of global, regional, and industry specific security standards and regulations. When new reports are released, they are made available in AWS Artifact. Some of the reports available are listed below.

APRA CPG 234 Workbook
IRAP Package
Korea Information Security Management System (K-ISMS)
Quality Management System Overview
Cloud Computing Compliance Controls Catalogue (C5)
ISO 27001:2013 Certification and Statement of Applicability (SoA)
MAS TRM Guidelines Workbook
Service Organization Controls (SOC) 1 Report
FedRAMP Partner Package
ISO 27017:2015 Certification and Statement of Applicability (SoA)
PCI DSS Attestation of Compliance (AOC) and Responsibility Summary
Service Organization Controls (SOC) 2 Report
Global Financial Services Regulatory Principles
ISO 27018:2014 Certification and Statement of Applicability (SoA)
PSN Connection Compliance Certificate (CoCo)
Service Organization Controls (SOC) 3 Report
HKMA TM-G-1 Workbook
ISO 9001:2015 Certification
PSN Service Provision Compliance Certificate
SOC Continued Operations Letter

Learn more about AWS Artifact

Visit the Getting Started page
Ready to build?
Get started with AWS Artifact
Have more questions?
Contact us