Data residency and high availability
- Tier: Ultimate
- Offering: GitLab Dedicated
GitLab Dedicated provides data residency control, infrastructure isolation, and high availability through single-tenant AWS deployments.
Data isolation
GitLab Dedicated isolates your data and infrastructure from other tenants through single-tenant architecture:
- Your environment runs in an AWS account separate from other tenants.
- All infrastructure required to host GitLab is contained within your account boundary.
- Your data remains within your account and is isolated from GitLab.com.
- You administer the application while GitLab manages the underlying infrastructure.
Data residency
During onboarding, you select AWS regions for your instance deployment, data storage, and disaster recovery to meet compliance, performance, and availability requirements.
Primary regions
You can deploy your instance in the following AWS regions:
| Region | Code | ClickHouse Cloud |
|---|---|---|
| Africa (Cape Town) | af-south-1 | Yes |
| Asia Pacific (Hyderabad) | ap-south-2 | No |
| Asia Pacific (Jakarta) | ap-southeast-3 | No |
| Asia Pacific (Mumbai) | ap-south-1 | Yes |
| Asia Pacific (Osaka) | ap-northeast-3 | No |
| Asia Pacific (Seoul) | ap-northeast-2 | Yes |
| Asia Pacific (Singapore) | ap-southeast-1 | Yes |
| Asia Pacific (Sydney) | ap-southeast-2 | Yes |
| Asia Pacific (Tokyo) | ap-northeast-1 | Yes |
| Canada (Central) | ca-central-1 | Yes |
| Europe (Frankfurt) | eu-central-1 | Yes |
| Europe (Ireland) | eu-west-1 | Yes |
| Europe (London) | eu-west-2 | Yes |
| Europe (Milan) | eu-south-1 | No |
| Europe (Paris) | eu-west-3 | No |
| Europe (Stockholm) | eu-north-1 | Yes |
| Europe (Zurich) | eu-central-2 | No |
| Israel (Tel Aviv) | il-central-1 | No |
| Middle East (Bahrain) | me-south-1 | No |
| South America (São Paulo) | sa-east-1 | Yes |
| US East (Ohio) | us-east-2 | Yes |
| US East (N. Virginia) | us-east-1 | Yes |
| US West (N. California) | us-west-1 | No |
| US West (Oregon) | us-west-2 | Yes |
For low emission region guidance, see choose a region based on both business requirements and sustainability goals.
If you need a region that isn’t listed, contact your account representative or GitLab Support.
ClickHouse Cloud
ClickHouse Cloud provides advanced analytical features and is only available in specific AWS regions.
If you select a primary region that doesn’t support ClickHouse Cloud, advanced analytical features are not available for your instance.
GitLab Dedicated instances in supported regions include a ClickHouse Cloud database deployed in your tenant’s primary region. The database connects through AWS PrivateLink and is not publicly accessible. Your data is encrypted in transit and at rest using cloud provider-managed AES 256 keys and transparent data encryption.
When you configure your GitLab Dedicated instance to filter outbound requests, the ClickHouse endpoint address is automatically added to the allowlist.
ClickHouse on GitLab Dedicated has the following limitations:
- Bring your own key (BYOK) is not supported.
- No SLAs apply. Recovery time objective (RTO) and recovery point objective (RPO) are best efforts.
Secondary regions with limited support
You can select AWS regions as secondary regions for disaster recovery, but they don’t support all AWS features that GitLab Dedicated uses. Some features are unavailable if failover occurs to your secondary region.
The following regions are available only as secondary regions and don’t support AWS Simple Email Service (SES):
| Region | Code |
|---|---|
| Asia Pacific (Hong Kong) | ap-east-1 |
| Asia Pacific (Melbourne) | ap-southeast-4 |
| Asia Pacific (Malaysia) | ap-southeast-5 |
| Asia Pacific (Thailand) | ap-southeast-7 |
| Canada West (Calgary) | ca-west-1 |
| Europe (Spain) | eu-south-2 |
| Mexico (Central) | mx-central-1 |
Without SES support, you cannot send email notifications using the default configuration. To maintain email functionality in these regions, set up an external SMTP mail service.
During onboarding, regions with limitations are clearly marked. You must acknowledge the associated risks before selecting one as your secondary region.
Availability and scalability
GitLab Dedicated uses modified versions of the Cloud Native Hybrid reference architectures with high availability configurations.
GitLab matches your instance to the closest reference architecture size based on your number of users.
GitLab Dedicated environments use additional cloud provider services beyond the standard reference architectures to enhance security and stability. As a result, GitLab Dedicated costs differ from standard reference architecture costs.