In keeping with the requirements for HIPAA and other certifications, regulated and protected data must be encrypted in transit or at rest when accessed by containers launched with Fargate. Additionally, you must execute a Business Associate Addendum (BAA) with AWS to meet the eligibility requirements for processing encrypted Protected Health Information (PHI) under HIPAA using Amazon ECS and Fargate. Fargate does not support encryption at rest, which is something customers need to manage to meet HIPAA requirements.

