Maintained with ☕️ by
IcePanel logo

Amazon Kendra achieves ISO and PCI compliance



Today, Amazon Web Services (AWS) announced Amazon Kendra, an intelligent search service powered by machine learning, can now be used for workloads subject to International Organization for Standardization (ISO) and Payment Card Industry Data Security Standard (PCI DSS) compliance. This is in addition to eligibility for [U.S. Health Insurance Portability and Accountability Act (HIPAA)](/compliance/hipaa-compliance/), announced by Amazon Kendra [previously](/about-aws/whats-new/2020/10/amazon-kendra-achieves-hipaa-eligibility/). Starting today, Amazon Kendra is now certified for ISO 9001, ISO 27001, ISO 27017, and ISO 27018, which means customers in finance, healthcare, and more can get deep insight into the security processes and controls that protect customer data. Learn more on our [ISO compliance page](/compliance/iso-certified/). PCI DSS is a proprietary information security standard administered by the PCI Security Standards Council and applies to all entities that store, process or transmit cardholder data and/or sensitive authentication data including merchants, processors, acquirers, issuers, and service providers. Learn more on our [PCI compliance page](/compliance/pci-dss-level-1-faqs/). To learn more, visit our site on [services compliance](/compliance/services-in-scope/) or see our [compliance resources](/compliance/resources/). You can learn more about Amazon Kendra on the [product page](/kendra/). Please visit the [AWS region table](/about-aws/global-infrastructure/regional-product-services/) to see all AWS regions where Amazon Kendra is available.