Enforce data residency with Amazon Quick extensions for Microsoft Teams

AWS has launched new regional routing capabilities for its Amazon Q AI assistant within Microsoft Teams, designed to help multinational corporations comply with strict data residency laws. The solution automatically directs users to AWS Region-specific resources—including Q chat agents, knowledge bases, and automation flows—based on their geographic location. This is critical for organizations operating under regulations like Europe's GDPR or country-specific data sovereignty laws, ensuring that European user data stays in the EU (e.g., the eu-west-1 Ireland Region) while US data remains in US regions like us-east-1.

The technical implementation relies on integrating AWS IAM Identity Center with Microsoft Entra ID for identity management. Administrators configure a single Amazon Q account with regional agents, then use Entra ID group membership to automate user routing. The setup involves creating IAM roles and Secrets Manager entries per region, generating regional manifest files, and deploying specific Microsoft Teams add-ons to user groups. This architecture allows regulated industries—financial services, healthcare, energy, and telecoms—to deploy a unified AI assistant globally while maintaining compliance by keeping sensitive data within defined geographic boundaries.