Table of contents

Faqs

Topics on this page
How does Conformity access my AWS account?
What data does Conformity capture and how is it stored?
Does anyone at Conformity look at this data?
Will using Conformity increase my monthly bill?
How quick is Conformity to set up?
Can I add a custom rule for AWS?
How is best practice determined?
What communication tools do you integrate with?

How does Conformity access my AWS account?

Conformity uses a custom access policy to view your AWS account metadata - there is no read or write access to your data.

What data does Conformity capture and how is it stored?

Conformity only accesses the metadata associated with your AWS infrastructure. For example, we recognise that your AWS account has twelve S3 buckets and twenty EC2 instances, however, we cannot see the data/applications associated with these resources.

We retain metadata for active accounts for a 12-month period after which it is automatically deleted. If you choose to deactivate an account, all your data is automatically deleted at the time of deactivation.

Does anyone at Conformity look at this data?

No, Conformity staff don’t have access to view your dashboard or account information. Authorised members of our technical team have limited access to view metadata associated with your accounts, for example, the number of compliance checks performed. However, our staff cannot see the specific violations associated with your AWS or Azure account.

Will using Conformity increase my monthly bill?

Conformity accesses your account via the AWS API and therefore does not increase your AWS bill. Your monthly AWS bill will not increase regardless of how many of your AWS accounts are linked to Conformity.

How quick is Conformity to set up?

Conformity has been designed so you can be up and running with your own Conformity account within 5 minutes. Once you have connected and configured one AWS/Azure account, replicating the rules and communication preferences across other accounts can be done in a matter of minutes. We’d be more than happy to give a quick demo on this!

Can I add a custom rule for AWS?

If you’re keen to add your own rules, custom rules can be created via AWS Config with the results ingested and displayed in Conformity. Other custom rule sets can be ingested by Conformity via the Conformity API.

If you need additional support creating a new rule, please contact us (there is always someone online!). We’re constantly adding new rules to our platform, so we might already be working on the rule you’re after.

How is best practice determined?

The AWS Well-Architected Framework and the Azure CIS Foundations defines best practices you should follow to ensure your infrastructure is secure, reliable, high available and cost effective. Conformity automates the auditing of your infrastructure against these frameworks.

What communication tools do you integrate with?

Conformity currently integrates with the following communication channels and workflow systems:

  • Amazon SNS
  • Email
  • Jira
  • Microsoft Teams
  • PagerDuty
  • ServiceNow
  • Slack
  • SMS
  • Zendesk
  • Webhooks