Best practices for PII compliance in Amazon Connect

Following this list of best practices can help you ensure your Amazon Connect contact center is PII (Personally Identifiable Information) compliant.

Conduct compliance eligibility audits for all services used in your contact center, as well as any third party integration points.
AWS Key Management Service (KMS) encrypts Amazon S3 contents at the object level, which covers recordings, logs, and saved reports by default for Amazon S3. Make sure encryption in transit and at rest rules apply downstream or to third party apps.
Use encryption in the Store customer input block for sensitive DTMF information.
Use your own KMS key when ingesting data in Amazon Connect Customer Profile domains.
Do not upload content containing customer PII to Amazon Q in Connect.
When using Amazon Connect Voice ID, do not use PII in the CustomerSpeakerId.
As with any AWS service, we strongly recommend that you not use sensitive information to name resources.
When using pre-defined attributes in an Amazon Connect instance, do not use sensitive information in it's name and values.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Compliance validation

Best practices for PCI compliance