Spring 2021 PCI DSS report now available with nine services added in scope
We’re continuing to expand the scope of our assurance programs at Amazon Web Services (AWS) and are pleased to announce that nine new services have been added to the scope of our Payment Card Industry Data Security Standard (PCI DSS) certification. This provides our customers with more options to process and store their payment card data and architect their cardholder data environment (CDE) securely in AWS.
You can see the full list of services on our Services in Scope by Compliance Program page. The nine new services are:
- Amazon AppFlow
- AWS Audit Manager
- Amazon Chime
- AWS Cloud9
- Amazon FinSpace
- Amazon Fraud Detector
- Amazon Macie
- AWS Network Firewall
- Amazon Simple Email Service
AWS Local Zones sites were newly assessed as additional infrastructure deployments as part of the spring 2021 PCI assessment.
We were evaluated by Coalfire, a third-party Qualified Security Assessor (QSA). The Attestation of Compliance (AOC) that shows AWS PCI compliance status is available through AWS Artifact.
To learn more about our PCI program and other compliance and security programs, see the AWS Compliance Programs page. As always, we value your feedback and questions; reach out to the AWS Compliance team through the Contact Us page.
If you have feedback about this post, submit comments in the Comments section below.