You cannot use AWS services in ways that violate US export laws or sanctions against certain countries or individuals — this means you cannot provide AWS-hosted technology to sanctioned countries, entities, or individuals.
This provision requires all AWS customers to ensure they are not providing services, data, or technology to individuals or entities in sanctioned countries or on OFAC's Specially Designated Nationals (SDN) list, which is particularly relevant for SaaS companies with international users who may unknowingly onboard prohibited customers.
How other platforms handle this
These Terms shall be governed by the laws of the State of California without regard to principles of conflict of laws. Unless you and Poshmark agree to arbitrate, you agree that any legal action or proceeding between you and Poshmark will be brought exclusively in a federal or state court of compete...
This Arbitration Agreement is governed by the Federal Arbitration Act ("FAA"), 9 U.S.C. §§ 1-16, including both the FAA's procedural and substantive provisions. If the FAA is inapplicable for any reason, then this Arbitration Agreement is governed by the laws of the State of Delaware, including the ...
For people outside the European Economic Area and Switzerland: The laws of California, USA, excluding California's conflict of laws rules, will apply to any disputes arising out of or relating to these terms or the services. These disputes will be resolved exclusively in the federal or state courts ...
Businesses with global operations or international customer bases must screen users and data flows against OFAC sanctions lists and EAR controls, because using AWS to provide services to sanctioned parties violates both US law and this AUP, risking account termination and severe civil and criminal penalties.
(1) REGULATORY FRAMEWORK: This provision incorporates the Export Administration Regulations (EAR, 15 C.F.R. Parts 730-774, BIS/Commerce Department enforcement), OFAC sanctions programs (31 C.F.R. various parts, Treasury Department enforcement), and International Traffic in Arms Regulations (ITAR, 22 C.F.R. Parts 120-130, State Department DDTC enforcement) by reference. Cloud computing services may constitute 'deemed exports' under EAR Part 734 when providing technology access to foreign nationals. OFAC's 50% Rule requires blocking entities owned 50% or more by sanctioned parties even if not named on the SDN list. (2)
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.