AWS Security ChangesHomeSearch

AWS securityagent documentation change

Service: securityagent · 2026-04-01 · Documentation low

File: securityagent/latest/userguide/data-protection.md

Summary

Added 'Data deletion' to topic list and created a new section detailing data deletion procedures, including marking data for deletion and 30-day deletion timeline. Also added reference to GDPR blog post in shared responsibility model section.

Security assessment

The change adds documentation about data deletion procedures which is a security and privacy feature, but there's no evidence of addressing a specific security vulnerability. The GDPR reference enhances data protection compliance documentation.

Diff

diff --git a/securityagent/latest/userguide/data-protection.md b/securityagent/latest/userguide/data-protection.md
index a3dabbd80..1e76d0984 100644
--- a//securityagent/latest/userguide/data-protection.md
+++ b//securityagent/latest/userguide/data-protection.md
@@ -5 +5 @@
-Encryption at restEncryption in transitKey managementInternetwork traffic privacy
+Encryption at restEncryption in transitKey managementInternetwork traffic privacyData deletion
@@ -9,3 +9 @@ Encryption at restEncryption in transitKey managementInternetwork traffic privac
-The AWS [shared responsibility model](https://aws.amazon.com/compliance/shared-responsibility-model/) applies to data protection in AWS Security Agent. As described in this model, AWS is responsible for protecting the global infrastructure that runs all of the AWS Cloud. You are responsible for maintaining control over your content that is hosted on this infrastructure. You are also responsible for the security configuration and management tasks for the AWS services that you use. For more information about data privacy, see the [Data Privacy FAQ](https://aws.amazon.com/compliance/data-privacy-faq/).
-
-For data protection purposes, we recommend that you protect AWS account credentials and set up individual users with AWS IAM Identity Center or AWS Identity and Access Management (IAM). That way, each user is given only the permissions necessary to fulfill their job duties. We also recommend that you secure your data in the following ways:
+The AWS [shared responsibility model](https://aws.amazon.com/compliance/shared-responsibility-model/) applies to data protection in AWS Security Agent. As described in this model, AWS is responsible for protecting the global infrastructure that runs all of the AWS Cloud. You are responsible for maintaining control over your content that is hosted on this infrastructure. You are also responsible for the security configuration and management tasks for the AWS services that you use. For information about data protection in Europe, see the [AWS Shared Responsibility Model and GDPR](https://aws.amazon.com/blogs/security/the-aws-shared-responsibility-model-and-gdpr/) blog post on the _AWS Security Blog_. For data protection purposes, we recommend that you protect AWS account credentials and set up individual users with AWS IAM Identity Center or AWS Identity and Access Management (IAM). That way, each user is given only the permissions necessary to fulfill their job duties. We also recommend that you secure your data in the following ways:
@@ -71,0 +70,22 @@ In the default configuration, AWS Security Agent uses the public internet to rea
+## Data deletion
+
+When you delete data from AWS Security Agent:
+
+  * The data is marked for deletion and is no longer accessible through the service.
+
+  * The data is deleted from all AWS Security Agent systems within 30 days.
+
+
+
+
+To delete your data
+
+  1. In the AWS console, navigate to AWS Security Agent.
+
+  2. Choose the data you want to delete (security reviews, findings, or custom requirements).
+
+  3. Choose **Delete** and confirm the deletion.
+
+
+
+