What is the severity of this clause?

ConductAtlas classifies this Cross-Border Data Transfers clause as high severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar Cross-Border Data Transfers clauses across approximately 79 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

Cross-Border Data Transfers — AWS

Share 𝕏 Share in Share 🔒 PDF

Monitor governance changes for AWS Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

ⓘ

This analysis describes what AWS's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

Transferring personal data from the EU or UK to the US requires legal safeguards under GDPR; a general consent disclaimer in a privacy policy is not sufficient under EU law, making this clause legally contested for EU-based users.

Consumer impact (what this means for users)

AWS collects a broad range of personal information including contact details, payment information, device identifiers, and behavioral data from its websites and services, and may share this information with third-party service providers, advertising partners, and affiliated companies. International data transfers, including to the United States, are disclosed, which carries relevance for EU and UK users whose data may move outside jurisdictions with equivalent protections. You can exercise rights to access, correct, or delete your personal information by submitting a request through the AWS privacy contact mechanisms listed in the policy.

How other platforms handle this

PlanetScale Medium

You will provide personal information directly to our website in the United States. We may also transfer personal information to our partners and service providers in the United States and other jurisdictions. Please note that such jurisdictions may not provide the same protections as the data prote...

Notion Medium

Notion is based in the United States and the information we collect is governed by U.S. law. If you are accessing our Services from outside of the United States, please be aware that information collected through the Services may be transferred to, processed, stored, and used in the United States an...

Cohere Medium

Your personal information may be transferred to and processed in countries other than your country of residence, including Canada and the United States, where our servers are located and our central database is operated. These countries may have data protection laws that are different from those in ...

See all platforms with this clause type →

Monitoring

AWS has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
Amazon Web Services, Inc. is located in the United States. Information we collect from you will be processed in the United States. By using our website and/or providing personal information to us, you consent to the transfer of your information to the United States and other countries, which may have different data protection laws than those in your country of residence.

— Excerpt from AWS's AWS Privacy Notice

Applicable regulations

Provision details

Document information

Document

AWS Privacy Notice

Entity

AWS

Document last updated

May 5, 2026

Tracking information

First tracked

May 7, 2026

Last verified

May 10, 2026

Record ID

CA-P-005585

Document ID

CA-D-00649

Evidence Provenance

Source URL

https://aws.amazon.com/privacy/

Wayback Machine

View archived versions →

Content hash (SHA-256)

56db19656bcfe04e01d638ef57e34e27832e48cd46492abe0cac4eb4a655047a

Analysis generated

May 7, 2026 21:45 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: AWS
Document: AWS Privacy Notice
Record ID: CA-P-005585
Captured: 2026-05-07 21:45:26 UTC
SHA-256: 56db19656bcfe04e…
URL: https://conductatlas.com/platform/aws/aws-privacy-notice/cross-border-data-transfers/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

High

Other risks in this policy

Personal Information Collection medium
Third-Party Data Sharing medium
International Data Transfers medium
Cookies and Tracking Technologies medium
Data Subject Rights (EU and California) medium
Corporate Transaction Disclosure low

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does AWS's Cross-Border Data Transfers clause do?

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 79 platforms. See the full comparison.

Is ConductAtlas affiliated with AWS?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by AWS.