Data Protection in Alexa for Business - Alexa for Business

Data Protection in Alexa for Business

The Alexa for Business console collects data necessary to set up, configure, and manage Alexa devices being operated by Alexa for Business. Specifically, Alexa for Business collects emails that are used to invite employees or others to link their personal accounts to their corporate Alexa for Business account. In addition, the Alexa system collects and stores voice data used to interact with Alexa, as well as responses, in order to improve Alexa features, such as speech recognition and natural language understanding.

To secure your content, Alexa for Business and Alexa provides multiple methods to clear voice and transcript data from the Alexa system, including the Alexa for Business console, APIs, and voice commands. You can also choose not to have your data annotated by humans, so it will only be used for machine learning.

All customer-specific data within Alexa for Business and Alexa is encrypted at rest and in transit. Alexa for Business secures content by default.

Data Encryption

All customer-specific data within Alexa for Business and Alexa is encrypted at rest and in transit. Alexa for Business data is encrypted at rest using a CMK owned by AWS, and Alexa data is encrypted using a KMS owned by the Alexa team.

Encryption at Rest

Encryption at rest is configured by default.

Encryption in Transit

Encryption in transit is configured by default. Alexa for Business offers secure connections between Alexa/Echo devices and the Alexa cloud with HTTPS using TLS 1.2.

Key Management

There are currently no options for customers to manage encryption keys.

Interwork Traffic Privacy

This section does not apply to Alexa for Business.