Data Sovereignty

Your Data Stays in the Gulf

CloudHaris offers data residency options across GCC AWS, Azure, and Huawei Cloud regions to meet local data sovereignty requirements.

Talk to Our Team View Compliance Details

Available GCC Regions

Choose the cloud region that best meets your country's data residency laws. All regions offer the same CloudHaris feature set.

🇸🇦
AWS me-south-1

AWS Bahrain

Saudi Arabia and Bahrain traffic

Services

  • EC2, RDS, S3
  • CloudFront CDN
  • KMS encryption
  • VPC isolation
🇦🇪
AWS me-central-1

AWS UAE

UAE and Gulf states

Services

  • EC2, RDS, S3
  • CloudFront CDN
  • KMS encryption
  • Direct Connect
🇦🇪
Azure uaenorth

Azure UAE North

Microsoft Azure datacenter

Services

  • Azure VMs, SQL
  • Blob Storage
  • Azure Key Vault
  • ExpressRoute
🇸🇦
Huawei ME

Huawei Cloud ME

International BSS, HMAC auth

Services

  • ECS, RDS, OBS
  • HMAC authentication
  • DEW Key management
  • VPC peering

What Data We Store and Where

Full transparency on every data category — encryption method, location, and exactly what leaves your chosen region.

Data Category Encryption Stored Location Notes
User Credentials AES-256 Your chosen region Passwords hashed (bcrypt), never stored plain
Company Data AES-256 Your chosen region All business records, ERP data, documents
Metric Data & Logs Encrypted Your chosen region Usage analytics, audit trails, system logs
AI Analysis Requests In-transit TLS Sent to Anthropic (US) Anonymized metric summaries only — no PII or business records

AI features are opt-in. Disabling AI features means zero data leaves your chosen region.

Regulatory Compliance by Country

CloudHaris is designed to help organizations meet GCC-specific data protection frameworks. Below is an overview of the key regulations we address.

🇸🇦

Saudi Arabia

Kingdom of Saudi Arabia

  • NCA ECC

    National Cybersecurity Authority — Essential Cybersecurity Controls

  • PDPL

    Personal Data Protection Law — data localization for Saudi residents

  • SAMA Requirements

    Saudi Central Bank cloud security requirements for financial entities

🇦🇪

UAE

United Arab Emirates

  • TDRA Regulations

    Telecommunications & Digital Government Regulatory Authority requirements

  • DIFC Data Protection

    Dubai International Financial Centre — Law No. 5 of 2020

  • UAE PDPL

    Federal Decree-Law No. 45 of 2021 on Personal Data Protection

🇶🇦

Qatar

State of Qatar

  • QNISO Standards

    Qatar National Information Security Organization framework

  • NDS Data Protection

    National Data Security standards for cloud-hosted services

  • ictQATAR Guidelines

    Ministry of Communications and Information Technology cloud policy

Need Data Never to Leave Your Network?

CloudHaris offers a self-hosted deployment option for organizations with strict air-gap or on-premises requirements. Deploy the full CloudHaris platform inside your own data center or private cloud environment. Your data never traverses the public internet and never leaves your physical infrastructure.

  • Docker / Kubernetes deployment on your own servers
  • Zero outbound traffic requirement
  • Full feature parity with SaaS version
  • Dedicated onboarding and support from our GCC team
Enquire About On-Premises

Questions About Data Residency?

Talk to our team. We can walk you through the right region and compliance posture for your industry and country.

Talk to Our Team