We include generally available services in the scope of our compliance efforts based on the expected use case, feedback and demand. If a service is not currently listed as in scope of the most recent assessment, it does not mean that you cannot use the service. It is part of the shared responsibility for your organization to determine the nature of the data. Based on the nature of what you are building on AWS, you should determine if the service will process or store customer data and how it will or will not impact the compliance of your customer data environment.

We encourage you to discuss your workload objectives and goals with your AWS account team; they will be able to evaluate your proposed use case and architecture, and how our security and compliance processes overlay that architecture. Need to connect with an AWS business representative?

This webpage provides a list of AWS Services in Scope of AWS assurance programs. Unless specifically excluded, generally available features of each of the services are considered in scope of the assurance programs, and are reviewed and tested at the next opportunity for assessment. Refer to the AWS Documentation for the features of an AWS service.

✓ = This service is currently in scope and is reflected in current reports. For more specific details on status, please refer to each compliance program tab below.

 

PCI
Last updated: December 19, 2025

SERVICES / PROGRAMS	PCI DSS	PCI 3DS	PCI PIN	PCI P2PE
Amazon API Gateway	✓	✓
Amazon AppFlow	✓	✓
Amazon Application Recovery Controller	✓	✓
Amazon Athena	✓	✓
Amazon Augmented AI [excludes Public Workforce and Vendor Workforce for all features]	✓	✓
Amazon Bedrock [excludes Amazon Bedrock Marketplace]	✓	✓
Amazon Chime	✓	✓
Amazon Chime SDK	✓	✓
Amazon Cloud Directory	✓	✓
Amazon CloudFront [excludes content delivery through Amazon CloudFront Embedded Point of Presences]	✓	✓
Amazon CloudWatch	✓	✓
Amazon CloudWatch Logs	✓	✓
Amazon Cognito	✓	✓
Amazon Comprehend	✓	✓
Amazon Comprehend Medical	✓	✓
Amazon Connect	✓	✓
Amazon Data Firehose	✓	✓
Amazon DataZone	✓	✓
Amazon Detective	✓	✓
Amazon DevOps Guru	✓	✓
Amazon DocumentDB (with MongoDB compatibility)	✓	✓
Amazon DynamoDB	✓	✓
Amazon EC2 Auto Scaling	✓	✓
Amazon ElastiCache	✓	✓
Amazon Elastic Block Store (EBS)	✓	✓
Amazon Elastic Compute Cloud (EC2)	✓	✓
Amazon Elastic Container Registry (ECR)	✓	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓	✓
Amazon Elastic File System (EFS)	✓	✓
Amazon Elastic Kubernetes Service (EKS) [both Fargate and EC2 launch types]	✓	✓
Amazon Elastic MapReduce  (EMR)	✓	✓
Amazon EventBridge	✓	✓
Amazon FinSpace	✓	✓
Amazon Forecast	✓	✓
Amazon Fraud Detector	✓	✓
Amazon FSx	✓	✓
Amazon GuardDuty	✓	✓
Amazon Inspector	✓	✓
Amazon Inspector Classic	✓	✓
Amazon Kendra	✓	✓
Amazon Keyspaces (for Apache Cassandra)	✓	✓
Amazon Kinesis Data Streams	✓	✓
Amazon Kinesis Video Streams	✓	✓
Amazon Lex	✓	✓
Amazon Location Service	✓	✓
Amazon Macie	✓	✓
Amazon Managed Grafana	✓	✓
Amazon Managed Service for Apache Flink	✓	✓
Amazon Managed Service for Prometheus	✓	✓
Amazon Managed Streaming for Apache Kafka	✓	✓
Amazon Managed Workflows for Apache Airflow	✓	✓
Amazon MemoryDB	✓	✓
Amazon MQ	✓	✓
Amazon Neptune	✓	✓
Amazon OpenSearch Service	✓	✓
Amazon Personalize	✓	✓
Amazon Pinpoint and End User Messaging	✓	✓
Amazon Polly	✓	✓
Amazon Q Business	✓	✓
Amazon Q Developer	✓	✓
Amazon Quantum Ledger Database (QLDB)	✓	✓
Amazon Quick Suite [formerly Amazon QuickSight]	✓	✓
Amazon Redshift	✓	✓
Amazon Rekognition	✓	✓
Amazon Relational Database Service (RDS)	✓	✓
Amazon Route 53	✓	✓
Amazon S3 Glacier	✓	✓
Amazon SageMaker AI [formerly Amazon Sagemaker, excludes Studio Lab, Public Workforce and Vendor Workforce for all features]	✓	✓
Amazon Security Lake	✓	✓
Amazon SimpleDB	✓	✓
Amazon Simple Email Service (SES)	✓	✓
Amazon Simple Notification Service (SNS)	✓	✓
Amazon Simple Queue Service (SQS)	✓	✓
Amazon Simple Storage Service (S3)	✓	✓
Amazon Simple Workflow Service (SWF)	✓	✓
Amazon Textract	✓	✓
Amazon Timestream	✓	✓
Amazon Transcribe	✓	✓
Amazon Translate	✓	✓
Amazon Verified Permissions	✓	✓
Amazon Virtual Private Cloud (VPC)	✓	✓
Amazon WorkMail	✓	✓
Amazon WorkSpaces	✓	✓
Amazon WorkSpaces Applications [formerly known as Amazon AppStream 2.0]	✓	✓
Amazon WorkSpaces Thin Client	✓	✓
Amazon Workspaces Secure Browser	✓	✓
AWS Amplify	✓	✓
AWS AppFabric	✓	✓
AWS Application Migration Service	✓	✓
AWS App Mesh	✓	✓
AWS App Runner	✓	✓
AWS AppSync	✓	✓
AWS Audit Manager	✓	✓
AWS B2B Data Interchange	✓	✓
AWS Backup	✓	✓
AWS Batch	✓	✓
AWS Certificate Manager (ACM)	✓	✓
AWS Clean Rooms	✓	✓
AWS Cloud Map	✓	✓
AWS Cloud9	✓	✓
AWS CloudFormation	✓	✓
AWS CloudHSM	✓	✓	✓
AWS CloudShell	✓	✓
AWS CloudTrail	✓	✓
AWS CodeBuild	✓	✓
AWS CodeCommit	✓	✓
AWS CodeDeploy	✓	✓
AWS CodePipeline	✓	✓
AWS Control Tower	✓	✓
AWS Config	✓	✓
AWS Database Migration Service (DMS)	✓	✓
AWS DataSync	✓	✓
AWS Data Exchange	✓	✓
AWS Direct Connect	✓	✓
AWS Directory Service [excludes Simple AD]	✓	✓
AWS Elastic Beanstalk	✓	✓
AWS Elastic Disaster Recovery	✓	✓
AWS Elemental MediaConnect	✓	✓
AWS Elemental MediaConvert	✓	✓
AWS Elemental MediaLive	✓	✓
AWS Entity Resolution	✓	✓
AWS Fault Injection Service	✓	✓
AWS Firewall Manager	✓	✓
AWS Global Accelerator	✓	✓
AWS Glue	✓	✓
AWS Glue DataBrew	✓	✓
AWS Ground Station	✓	✓
AWS Health Dashboard	✓	✓
AWS HealthImaging	✓	✓
AWS Healthlake	✓	✓
AWS HealthOmics	✓	✓
AWS Identity and Access Management (IAM)	✓	✓
AWS IAM Identity Center	✓	✓
AWS IoT Core	✓	✓
AWS IoT Device Defender	✓	✓
AWS IoT Device Management	✓	✓
AWS IoT Events	✓	✓
AWS IoT Greengrass	✓	✓
AWS IoT SiteWise	✓	✓
AWS IoT TwinMaker	✓	✓
AWS Key Management Service (KMS)	✓	✓
AWS Lake Formation	✓	✓
AWS Lambda	✓	✓
AWS License Manager	✓	✓
AWS Mainframe Modernization	✓	✓
AWS Managed Services	✓	✓
AWS Network Firewall	✓	✓
AWS Organizations	✓	✓
AWS Outposts	✓	✓
AWS Payment Cryptography	✓	✓	✓	✓
AWS Private Certificate Authority	✓	✓
AWS Resilience Hub	✓	✓
AWS Resource Access Manager (RAM)	✓	✓
AWS Resource Explorer	✓	✓
AWS Resource Groups	✓	✓
AWS Secrets Manager	✓	✓
AWS Security Hub CSPM (formerly AWS Security Hub)	✓	✓
AWS Security Incident Response	✓
AWS Serverless Application Repository	✓	✓
AWS Service Catalog	✓	✓
AWS Shield	✓	✓
AWS Signer	✓	✓
AWS Snowball	✓	✓
AWS Step Functions	✓	✓
AWS Storage Gateway	✓	✓
AWS Systems Manager	✓	✓
AWS Transfer Family	✓	✓
AWS Transform	✓
AWS Trusted Advisor	✓	✓
AWS User Notifications	✓	✓
AWS Verified Access	✓	✓
AWS WAF	✓	✓
AWS Wickr	✓	✓
AWS X-Ray	✓	✓
EC2 Image Builder	✓	✓
Elastic Load Balancing	✓	✓
FreeRTOS	✓	✓
VM Import/Export	✓	✓