Opting out of using your data for service improvement - Amazon GuardDuty
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Opting out of using your data for service improvement

GuardDuty Malware Protection scans and detects malware contained in EBS volumes attached to your potentially compromised Amazon EC2 instance and container workloads. When GuardDuty Malware Protection identifies an EBS volume file as being malicious or harmful, GuardDuty Malware Protection collects and stores this file to develop and improve its malware detections, and the GuardDuty service. This file may also be used to develop and improve other Amazon security services. Your trust, privacy, and the security of your content are our highest priority, and ensure that our use complies with our commitments to you. For more information, see Data Privacy FAQ.

You can choose to opt out of having your data used to develop and improve GuardDuty and other Amazon security services by using the Amazon Organizations opt-out policy. For more information, see AI services opt-out policies in the Amazon Organizations User Guide.


For you to use the opt-out policy, your Amazon accounts must be centrally managed by Amazon Organizations. If you haven't already created an organization for your Amazon accounts, see Creating and managing an organization in the Amazon Organizations User Guide.

Opting out has the following effects:

  • GuardDuty deletes all of your collected or stored files that GuardDuty Malware Protection identified as being malicious or harmful before you opted out.

  • After your opt-out, GuardDuty Malware Protection will no longer collect and store your files.