Open menu

Frequently Asked Questions

Answers to your most commonly asked question

How does Cloud Conformity access my AWS account?

Cloud Conformity accesses your account(s) using a custom access policy.

Using the Cloud Conformity custom access policy, Cloud Conformity only have access to view your AWS account metadata. Cloud Conformity does not have access to read your data or write to your account.

What data does Cloud Conformity capture and how is it stored?

Cloud Conformity only has access to the metadata associated with your AWS infrastructure. For example, we recognise that your AWS account has 12 S3 buckets and 35 EC2 instances, however, we cannot see the data / applications associated with these resources.

Cloud Conformity staff don’t have access to view your dashboard or account information. Authorised members of our technical team have limited access to view metadata associated with your accounts, for example, the number of compliance checks performed. However, our staff cannot see the specific violations associated with your AWS account.

Cloud Conformity retains metadata for active accounts for a 12-month period, at which point it is automatically deleted. If you choses to deactivate an account, all data is automatically deleted.

Will using Cloud Conformity increase my monthly AWS bill?

Cloud Conformity accesses your account via the AWS API and therefore does not increase your AWS bill. Your monthly AWS bill will not increase regardless of how many of your AWS accounts are linked to Cloud Conformity.

Can I cancel my subscription at any time?

Absolutely! Cloud Conformity is charged on a month-to-month basis. If at anytime you’re unhappy with the service you can cancel your subscription via the Administration section. You will only be charged for the remainder of the month.

How is Cloud Conformity different to Trusted Advisor?

Trusted Advisor is a great starting point to identify best practice violations and cost saving techniques in your AWS account. However, Trusted Advisor is limited to 54 rules and doesn’t provide detailed, easy to follow resolution steps necessary to rectify the issues. If you have complex production workloads on AWS, you will need a comprehensive continuous assurance tool that covers more AWS services. Cloud Conformity has over 450 advanced rules and provides the rationale and detailed resolution steps necessary for your DevOps engineers to quickly understand and resolve issues.

How do you determine the best practices?

The AWS Well-Architected Framework defines best practices you should follow to ensure your AWS infrastructure is secure, reliable, highly available and cost effective. Cloud Conformity automates the auditing of your AWS infrastructure against the well-architected framework.

Can I add a custom rule?

If you need an additional rule that is not currently provided by Cloud Conformity, please start a conversation with us via Intercom or our contact page. We’re constantly adding new rules to Cloud Conformity, so chances are we’re already working on the rule you’re after. If not, we can add it to our product roadmap and have it implemented in one of our upcoming releases. We believe it’s best to constantly add new rules for all of our customers, rather than requiring individuals to create custom rules for themselves. If you need a rule, it’s likely everyone else does too!

What communication tools do you integrate with?

Cloud Conformity currently integrates with with the following communication channels and workflow systems:

  • JIRA

  • ServiceNow

  • Zendesk

  • SMS

  • Amazon SNS

  • PagerDuty

  • Email

  • Slack

How many rules do you have?

Cloud Conformity currently has over 450 automated best practice rules. We are adding new rules every week so this list is constantly growing.

Can I use Cloud Conformity for Azure or Google Cloud?

Cloud Conformity is a specialized AWS continuous assurance tool. If you have a hybrid cloud environment, please get in touch with us to discuss how we may be able to help.