More control, more choice

At AWS, we have always believed that for the cloud to realize its full potential it is essential that you have control over your data and choices for how you secure and manage your data in the cloud. We give you the flexibility to choose how and where you want to run your workloads.

Sovereignty has been a priority for AWS since the very beginning when we were the only major cloud provider to allow you to control the location and movement of your customer data.

AWS European Sovereign Cloud launching by the end of 2025

Delivering on the AWS Digital Sovereignty Pledge

The AWS Digital Sovereignty Pledge is our commitment to offering AWS customers the most advanced set of sovereignty controls and features available in the cloud. We committed to expanding our capabilities to allow you to meet your digital sovereignty needs, without compromising on the performance, innovation, security, or scale of the AWS Cloud.

DigitalSovereigntyEU

AWS European Sovereign Cloud

We've announced plans to launch the AWS European Sovereign Cloud, a new, independent cloud for Europe, designed to help public sector organizations and customers in highly regulated industries meet their evolving sovereignty needs. The AWS European Sovereign Cloud will provide customers the capability to meet stringent operational autonomy and data residency requirements. The AWS European Sovereign Cloud is planning to launch its first AWS Region in Germany by the end of 2025, available to all customers.

AWS Dedicated Local Zones

We recently introduced AWS Dedicated Local Zones, a type of infrastructure that is fully managed by AWS, built for exclusive use by a customer or community, and placed in a customer-specified location or data center to help comply with regulatory requirements. Dedicated Local Zones can be operated by local AWS personnel and offer the same benefits of AWS Local Zones, such as elasticity, scalability, and pay-as-you-go pricing, with added security and governance features.

Sovereign-by-Design

Our approach to digital sovereignty is to continue to make the AWS Cloud sovereign-by-design—as it has been from day one. We will continue to architect and build AWS and deliver features and controls so that you can use AWS services while meeting your regulatory requirements.

Control over the location of your data

You have always controlled the location of your workloads on AWS. You have the choice to deploy your customer data into any of our Regions around the world. You can also use AWS Dedicated Local Zones, where we work with you to configure your own Local Zones with the services and capabilities you need to meet your regulatory requirements.

With AWS, you control your data by using powerful AWS services and tools to determine where your data is stored, how it is secured, and who has access to it. For example, AWS Control Tower provides preventative, detective and proactive controls to help you meet your data residency requirements and purpose-built controls aggregated in a digital sovereignty category grouping.

Verifiable control over data access

We have designed and delivered first-of-a-kind innovation to restrict access to customer data. The AWS Nitro System, which is the foundation of AWS computing services, uses specialized hardware and software to protect data from outside access during processing on Amazon EC2. By providing a strong physical and logical security boundary, Nitro is designed to enforce restrictions so that nobody, including anyone in AWS, can access customer workloads on EC2 without your authorization. The security design of the Nitro System has also been independently validated by the NCC Group in a public report.

The ability to encrypt everything everywhere

We give you features and controls to encrypt data, whether in transit, at rest, or in memory. All AWS services already support encryption, with most also supporting encryption with customer managed keys that are inaccessible to AWS operators. We commit to continue to innovate and invest in additional controls and encryption features for our customers to encrypt everything everywhere with encryption keys managed inside or outside the AWS cloud. If you have a regulatory need to store and use your encryption keys outside the AWS Cloud, you can use AWS Key Management Service (AWS KMS) External Key Store

Resilience of the cloud

Control over workloads and high availability are essential in the case of events like supply chain disruption, network interruption, and natural disaster. At AWS, we’ve instilled resilience into our infrastructure, service design and deployment, operational model, and mechanisms to build more resilient cloud architectures. Each AWS Region is comprised of three or more Availability Zones (AZs), which are fully isolated infrastructure partitions. To achieve high availability, you can partition applications across multiple AZs in the same AWS Region.

AWS also makes it easier for you to design, build, and run highly available applications in the cloud. Our continuous resilience services, AWS Resilience Hub, AWS Fault Injection Service, AWS Backup, and AWS Elastic Disaster Recovery, can help you analyze, test, and quickly recover your applications to improve your resilience posture. For customers that are running workloads on-premises or in intermittently connected or remote use cases, we offer services, such as AWS Outposts and AWS Snow Family, that provide specific capabilities for compute and storage on premises, and in remote or disconnected locations. 

Transparency & Assurances

At AWS, earning customer trust is the foundation of our business. We understand that protecting your customer data is key to achieving this. We also know that trust must continue to be earned through transparency. We are transparent­ about how our services process and transfer data. We will continue to challenge requests for customer data from law enforcement and government agencies. We provide guidance, compliance evidence, and contractual commitments so that our customers can use AWS services to meet compliance and regulatory requirements. 

Man talking on phone
Man talking on phone

Transparency & Assurances

At AWS, earning customer trust is the foundation of our business. We understand that protecting your customer data is key to achieving this. We also know that trust must continue to be earned through transparency. We are transparent­ about how our services process and transfer data. We will continue to challenge requests for customer data from law enforcement and government agencies. We provide guidance, compliance evidence, and contractual commitments so that our customers can use AWS services to meet compliance and regulatory requirements. 

Trusted Partners

Our partners play a prominent role in bringing solutions to customers. AWS Digital Sovereignty Partners specialize in addressing customers’ digital sovereignty requirements while leveraging AWS services and controls. These partners are a community of validated AWS Partners with advanced AWS sovereignty experience, capabilities, and services. The Digital Sovereignty Partner community identifies AWS Partners with demonstrated expertise to advise and architect for their customers’ digital sovereignty needs, while maximizing the full potential of the AWS Cloud. 

Trusted Partners

Our partners play a prominent role in bringing solutions to customers. AWS Digital Sovereignty Partners specialize in addressing customers’ digital sovereignty requirements while leveraging AWS services and controls. These partners are a community of validated AWS Partners with advanced AWS sovereignty experience, capabilities, and services. The Digital Sovereignty Partner community identifies AWS Partners with demonstrated expertise to advise and architect for their customers’ digital sovereignty needs, while maximizing the full potential of the AWS Cloud. 

How AWS is helping customers achieve their digital sovereignty and resilience goals | Mar 26 2024
See how customers are able to improve their resilience posture while meeting their digital sovereignty and resilience goals with AWS.

How AWS can help you navigate the complexity of digital sovereignty | Feb 07 2024
Read the blog to learn how AWS can help you meet requirements without compromising the benefits of the cloud.

AWS named as a Leader in 2023 ISG Provider Lens report for Multi Public Cloud Services | Jan 09 2024
Learn about the AWS score in the 2023 ISG Provider Lens Quadrant Report for Multi Public Cloud Services – Sovereign Cloud Infrastructure Services (EU).

AWS Digital Sovereignty Pledge: Announcing a new, independent sovereign cloud in Europe | Oct 24 2023
Read about our plans to launch the AWS European Sovereign Cloud, a new, independent cloud for Europe.

Announcing new dedicated infrastructure options | Aug 23 2023
Discover how we are helping public sector and regulated industry customers meet their dedicated infrastructure needs for their most critical workloads.  

Delivering on the AWS Digital Sovereignty Pledge | May 04 2023
Dive deep on two pillars of our Pledge: verifiable control over data access and the ability to encrypt everything everywhere.

The AWS Digital Sovereignty Pledge: Control without compromise | Nov 27 2022
Learn about our commitment to offering AWS customers the most advanced set of sovereignty controls and features available in the cloud.

The Security Design of the AWS Nitro System | Nov 18 2022
Read this whitepaper to gain an understanding of the security design of the Nitro System.

Data Privacy Center: Earning trust through transparency
Read the FAQ »
Organizations using AWS can comply with European regulations
Learn more »
Have Questions? Connect with an AWS Business Representative
Exploring compliance roles?
Apply today »
Want AWS Compliance updates?
Follow us on Twitter »