Inferensys

Glossary

Cross-Region Replication (CRR)

Cross-Region Replication (CRR) is the automatic, asynchronous or synchronous copying of data objects from a source bucket in one geographic region to a destination bucket in another to enforce data residency compliance, reduce access latency, or ensure disaster recovery.
Data scientist building training data pipeline on laptop, data preprocessing visible, technical workspace.
DATA RESIDENCY ENFORCEMENT

What is Cross-Region Replication (CRR)?

A technical mechanism for asynchronously or synchronously duplicating data objects across geographically distinct cloud regions to satisfy compliance, latency, and disaster recovery requirements.

Cross-Region Replication (CRR) is the automated, bucket-level process of copying newly created or updated objects from a source storage bucket in one geographic region to a destination bucket in a separate, distinct region. Unlike simple backup, CRR ensures the destination objects maintain the same metadata, object lock retention dates, and access control lists as the source, creating a bit-for-bit replica that can be used for active failover or localized serving.

The replication is typically asynchronous, meaning the source operation succeeds before the copy is committed to the destination, resulting in eventual consistency across regions. This mechanism is critical for enforcing data domiciling strategies, as it allows organizations to maintain a compliant primary copy in a sovereign jurisdiction while replicating a secondary copy to a distant region for low-latency global access or geographic redundancy without violating cross-border transfer restrictions.

Architectural Capabilities

Key Features of Cross-Region Replication

Cross-Region Replication (CRR) provides the foundational mechanism for maintaining identical copies of object data across geographically distinct cloud regions, enabling compliance with data residency mandates and robust disaster recovery strategies.

01

Asynchronous Replication Engine

CRR operates on an eventually consistent model. When an object is uploaded to the source bucket, the replication process is triggered asynchronously. This ensures that write operations to the source are not blocked by the latency of the cross-region transfer. The system guarantees a 99.9% Service Level Agreement (SLA) for replication within a defined time window, typically under 15 minutes, though it is often much faster. This mechanism is ideal for compliance and backup rather than synchronous, real-time active-active workloads.

< 15 min
Typical Replication SLA
02

Jurisdictional Data Domiciling

This feature is the primary technical control for enforcing data residency. By configuring a replication rule, you can automatically create a durable, read-only copy of your data in a specific sovereign cloud region. This satisfies legal mandates that require a primary or secondary copy of data to be physically stored within a nation's borders. The destination bucket can be owned by a different account, allowing a security team to hold the keys in a separate compliance zone, preventing source-region administrators from deleting jurisdictional copies.

Multi-Account
Ownership Isolation
03

Bi-Directional Replication

While standard CRR is one-way, advanced configurations enable bi-directional replication between two buckets in different regions. This is crucial for active-active geo-redundancy where users write to the nearest regional endpoint. To prevent infinite replication loops, the system uses object metadata to track replication status. This architecture supports low-latency global access while ensuring both regions maintain a complete, eventually consistent dataset for failover scenarios.

Active-Active
Topology Support
04

Storage Class & Ownership Override

CRR allows you to change the storage class of the replica independently of the source. For example, you can replicate standard-tier data from a production region directly into a cold archive storage class in a backup region to optimize costs. Additionally, you can override object ownership, forcing the destination bucket owner to become the object owner. This is a critical security feature for compliance, ensuring the source account cannot delete or modify the replicated compliance copy.

Archive-Ready
Cost Optimization
05

Delete Marker Replication Control

A critical data protection feature is the ability to disable the replication of delete markers. In a compliance or backup scenario, you do not want a malicious or accidental deletion in the source region to propagate to your disaster recovery or legal hold copy. By configuring CRR to ignore delete markers, the destination bucket retains a permanent, immutable record of all objects, even after they have been removed from the source, providing a strong safeguard against data destruction.

Immutable
Delete Protection
06

Replication Time Control (RTC)

For compliance-sensitive workloads, Replication Time Control (RTC) provides a predictable, enforceable SLA for replication. Unlike standard CRR, RTC guarantees that 99.99% of objects are replicated within 15 minutes, and the vast majority within seconds. If this SLA is breached, it triggers a monitoring alert. RTC is designed for use cases where the window of inconsistency between regions must be tightly bounded to meet strict Recovery Point Objectives (RPO).

99.99%
RTC SLA Compliance
CROSS-REGION REPLICATION

Frequently Asked Questions

Clear, technically precise answers to the most common questions about architecting, configuring, and troubleshooting Cross-Region Replication for compliance, latency, and disaster recovery.

Cross-Region Replication (CRR) is an asynchronous or synchronous process that automatically copies data objects from a source storage bucket in one geographic region to a destination bucket in a separate, distinct region. The mechanism operates at the object level: when a new object is created or an existing object is updated in the source bucket, the replication engine reads the object's metadata and payload, then transmits a copy across the provider's backbone network to the designated destination. Asynchronous replication provides eventual consistency, where the destination object is written after the source write is acknowledged, minimizing latency on the primary operation. Synchronous replication waits for the destination write to be confirmed before acknowledging the source write, ensuring zero data loss at the cost of higher latency. CRR is fundamentally distinct from Same-Region Replication (SRR) because it provides geographic isolation, protecting against regional failures and enabling compliance with data residency mandates that require data to be stored in specific legal jurisdictions.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.