Important NOTE - sharing the SOC 2 report requires us to follow a more formal process so that we know who has downloaded the report and how it's being used. The American Institute of Certified Public Accountants (AICPA) has rules that we must follow including the that SOC 1 or SOC 2 reports cannot be used as part of marketing/sales materials. Therefore it is critical that our customers access our certification/audit reports using AWS Artifacts so that we are properly recording these actions.
The terms and condition for the specific report are included on first page of the document you download from AWS Artifact. These T's & C's define when/if sharing is permissible. So I'd recommend that you download the current SOC 2 report and review the T's & C's against your situation.
AWS customers are able to access and download available versions of the SOC Reports (and others) through the AWS Artifact service in the management console.
Does the following AWS services are SOC 1,2,3 Supported?SUPPORT ENGINEERasked 5 months ago
Amplify with 2 different clients (front-ends)asked a month ago
Share SOC Type 2 report with ClientsAccepted Answerasked 9 months ago
AWS Artifact: SOC 2 Type 2 Report emptyasked a year ago
AWS Storage Gateway: access control, authentication and clientsAccepted Answerasked 2 years ago
Need Help with Aws Cli Command for INSPECTOR 2 ReportAccepted Answerasked 3 months ago
How to report an issue related to Amazon Linux 2 repo?asked 8 months ago
AWS Storage gateway and read only shareAccepted Answerasked 8 months ago
Is private cloud offering "AWS Outposts" part of billing report?asked a month ago