AWS Security ChangesHomeSearch

AWS data-exchange high security documentation change

Service: data-exchange · 2025-04-03 · Security-related high

File: data-exchange/latest/userguide/subscription-verification-pro.md

Summary

Added regulatory compliance requirements for sensitive data sharing

Security assessment

Directly addresses data security controls and compliance with new DOJ regulations regarding sensitive data exports

Diff

diff --git a/data-exchange/latest/userguide/subscription-verification-pro.md b/data-exchange/latest/userguide/subscription-verification-pro.md
index ac587dd41..a92f96178 100644
--- a//data-exchange/latest/userguide/subscription-verification-pro.md
+++ b//data-exchange/latest/userguide/subscription-verification-pro.md
@@ -6,0 +7,4 @@
+###### Important regulatory update
+
+Effective April 8, 2025, you may not use AWS Data Exchange to provide products containing Bulk U.S. Sensitive Personal Data or U.S. Government-related Data to Countries of Concern or Covered Persons, as each is defined in the U.S. Department of Justice Final Rule on Preventing Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern and Covered Persons ("DOJ Rule"), available [here](https://www.federalregister.gov/documents/2025/01/08/2024-31486/preventing-access-to-us-sensitive-personal-data-and-government-related-data-by-countries-of-concern). You are responsible for compliance with the DOJ Rule. To support compliance, subscription verification is now enabled for all AWS Data Exchange public offers and requires subscribers to identify if they are in a Country of Concern or a Covered Person.
+