AWS PrivateLink

AWSNetworking

Private service connectivity that exposes services through VPC endpoints — private IPs inside consumer VPCs — without traversing the public internet, NAT gateways, or peering. Foundational for SaaS-on-AWS designs and inter-VPC service meshes

FluffyStack tools
Add to Service BuilderAdd to CompareCompare with equivalentsExplore AWS in TreemapExplore networking in HoneycombSee AWS regions on the World MapSee networking as a networkScore jurisdiction exposure
DocumentationPricingAWS website

Jurisdictional exposure

Provider HQ
USSeattle, USA

Subject to CLOUD Act, FISA-702, DPF

Region locations
APACCNEEAEUUKUSOther40 regions across 7 jurisdictions
Sovereign option
Yes — 6 sovereign-flagged regions available
Full scorecard for this service →US lens detail →Sovereign cloud coverage map →

Attributes

SLA Uptime
99.99%

Sub-services (3)

Interface Endpoints

ENI-backed endpoints for calling AWS and partner services privately

Gateway Endpoints

Route-table-based endpoints for S3 and DynamoDB with no per-hour charge

Endpoint Services

Publish your own VPC-hosted services to other AWS accounts via PrivateLink

Compliance & Certifications

This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.

GDPRSOC 2ISO 27001HIPAAPCI DSSFedRAMP

Where this runs

40 regions
28 countries
6sovereign
Sovereign regions (6)
  • AWS European Sovereign Cloud (Brandenburg) · BrandenburgAWS European Sovereign Cloud
  • AWS GovCloud (US-East) · AshburnAWS GovCloud (US)
  • AWS GovCloud (US-West) · HillsboroAWS GovCloud (US)
  • AWS European Sovereign Cloud (Brandenburg) · BrandenburgAWS European Sovereign Cloud
  • China (Beijing) · BeijingAWS China (Sinnet)
  • China (Ningxia) · YinchuanAWS China (NWCD)
Commercial regions (34)

Europe (8)

  • Europe (Paris)
  • Europe (Frankfurt)
  • Europe (Ireland)
  • Europe (Milan)
  • Europe (Spain)
  • Europe (Stockholm)
  • Europe (Zurich)
  • Europe (London)

North America (7)

  • Canada West (Calgary)
  • Canada (Central)
  • Mexico (Central)
  • US East (N. Virginia)
  • US West (Oregon)
  • US East (Ohio)
  • US West (N. California)

South America (1)

  • South America (São Paulo)

Asia (11)

  • Asia Pacific (Hong Kong)
  • Asia Pacific (Hyderabad)
  • Asia Pacific (Mumbai)
  • Asia Pacific (Jakarta)
  • Asia Pacific (Osaka)
  • Asia Pacific (Tokyo)
  • Asia Pacific (Malaysia)
  • Asia Pacific (Singapore)
  • Asia Pacific (Seoul)
  • Asia Pacific (Taipei)
  • Asia Pacific (Thailand)

Oceania (3)

  • Asia Pacific (Melbourne)
  • Asia Pacific (Sydney)
  • Asia Pacific (New Zealand)

Middle East (3)

  • Middle East (Bahrain)
  • Israel (Tel Aviv)
  • Middle East (UAE)

Africa (1)

  • Africa (Cape Town)

Tags

private-connectivityvpc-endpointssaasnetworking

Equivalent services on other platforms

Azure Virtual NetworkAzure

Isolated private network infrastructure in Azure with subnets, NSGs, route tables, VNet peering, service endpoints, and hybrid connectivity via VPN or ExpressRoute

Azure Private LinkAzure

Private service connectivity that exposes Azure PaaS services, third-party partner services, and customer services through private endpoints in your VNet, keeping traffic on the Microsoft backbone and eliminating data exfiltration exposure

Virtual Private CloudGCP

Software-defined global private network for cloud resources with regional subnets, firewall rules, VPC peering, and private Google access

Private Service ConnectGCP

Private service connectivity that exposes Google APIs, managed services, and third-party SaaS through private endpoints inside your VPC — traffic stays on Google's network, consumer VPCs don't need to overlap with producer VPCs, and endpoints can have custom DNS

Pricing

Pricing model:pay-as-you-go