Loading image...Kiro
  • CLI
  • IDE
  • Web
  • Mobile
  • Enterprise
  • Pricing
  • Docs
SIGN INDOWNLOADS
Loading image...Kiro
Loading image...Kiro

Product

  • About Kiro
  • IDE
  • CLI
  • Web
  • Mobile
  • Pricing
  • Downloads

For

  • Enterprise
  • Startups
  • Students

Community

  • Overview
  • Ambassadors
  • Discord
  • Events
  • Powers
  • Shop
  • Showcase

Resources

  • Docs
  • Blog
  • Changelog
  • FAQs
  • Report a bug
  • Suggest an idea
  • Billing support

Social

Site TermsLicenseResponsible AI PolicyLegalPrivacy PolicyCookie Preferences
IDECLIWeb
  1. Docs
  2. CLI
  3. Privacy and security
  4. Compliance validation

Compliance validation for Kiro


Third-party auditors assess the security and compliance of Kiro as part of multiple compliance programs. Kiro (IDE and CLI) is compliant with the following:

  • Health Insurance Portability and Accountability Act (HIPAA)

To learn whether an AWS service is within the scope of specific compliance programs, see AWS services in Scope by Compliance Program and choose the compliance program you are interested in. For general information, see AWS Compliance Programs.

You can download third-party audit reports using AWS Artifact. For more information, see Downloading Reports in AWS Artifact.

Info

If you sign in to Kiro with GitHub or Google, you cannot download third-party audit reports using AWS Artifact. You must sign in with AWS Builder ID or AWS IAM Identity Center to access Artifact.

Your compliance responsibility when using AWS services is determined by the sensitivity of your data, your company's compliance objectives, and applicable laws and regulations. AWS provides the following resources to help with compliance:

  • Security Compliance & Governance – Solution implementation guides that discuss architectural considerations and provide steps for deploying security and compliance features.
  • HIPAA Eligible Services Reference – Lists HIPAA eligible services. Not all AWS services are HIPAA eligible.
  • AWS Compliance Resources – Workbooks and guides that might apply to your industry and location.
  • AWS Customer Compliance Guides – Summarize best practices for securing AWS services and map guidance to security controls across multiple frameworks including NIST, PCI, and ISO.
  • Evaluating Resources with Rules – AWS Config assesses how well your resource configurations comply with internal practices, industry guidelines, and regulations.
  • AWS Security Hub – Provides a comprehensive view of your security state within AWS and checks compliance against security industry standards and best practices.
  • Amazon GuardDuty – Detects potential threats to your AWS accounts, workloads, containers, and data by monitoring your environment for suspicious and malicious activities.
  • AWS Audit Manager – Helps you continuously audit your AWS usage to simplify how you manage risk and compliance with regulations and industry standards.
Page updated: May 26, 2026
Data protection
Infrastructure security