To ensure data protection according to design and standard principles, we recommend that APN customers and partners protect their AWS account information and create individual accounts with Amazon Identity and Access Management (IAM) so that each user has their own credentials, so that they can implement permission-based access to data and task separation after the user`s role. We also recommend the use of Multi-Factor Authentication (MFA) for each account requiring the use of SSL/TLS to communicate with AWS resources, set up API/user activity registration with AWS CloudTrail, use AWS encryption solutions and other security controls within AWS services. APN customers and partners can also use extensive security services such as Amazon Guard Duty for account and infrastructure security and Amazon Macie to support the identification and backup of personal data stored in Amazon S3 for RGPD compliance. AWS provides customers and APN partners with a number of tools to secure their data and protect them from cyberattacks. One such tool is AWS Shield. It is a managed DDoS protection service to protect websites and applications that run on AWS. AWS Shield Standard is available at no extra cost and offers increasingly available detection and automatic online mitigations that can minimize downtime and application latency. APN customers and partners can subscribe to AWS Shield Advanced for better protection against attacks against web applications run on AWS using ELB, Amazon CloudFront and Amazon Route 53 resources. AWS also publishes a document entitled “AWS Best Practices for DDoS Resiliency” that helps customers use AWS to create DDoS-resistant applications. The AWS cloud infrastructure was designed as one of the most flexible and secure cloud computing environments available today. Amazon`s reach allows it to invest much more in security policing and counter-measures than almost any large single company could afford. This infrastructure consists of hardware, software, networks and facilities that perform AWS services that provide customers and APN partners with powerful controls, including security controls, for the processing of personal data. For more details on AWS`s actions to maintain a consistently high level of security, see the AWS Overview of Security Processes white paper.
The European Union`s General Data Protection Regulation (GDPR) protects the fundamental right to privacy and the protection of personal data of the persons concerned in the European Union. Robust requirements are introduced to strengthen and harmonize data protection, security and compliance standards. The General Data Protection Regulation (GDPR) is a new European data protection law that became applicable on 25 May 2018. The RGPD replaces the European Data Protection Directive, also known as Directive 95/46/EC, and aims to harmonize data protection legislation across the European Union (EU) with the application of a single data protection law, mandatory in each Member State.