Canonical FrameworkCompliance & Audit

FDA 21 CFR Part 11

FDA 21 CFR Part 11 control-mapping starter for regulated electronic records and signatures in life sciences. It references validation, change, audit, access, retention, and signature-integrity requirements; operators must validate the complete record and signature system separately.

This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.

Regions

US

References

3 references

Mapped Control Domains

6 mapped domains

Deployment

Regulated SaaS, Clinical Zero-Retention, Private Cloud

Referenced Frameworks, Standards & Obligations

FDA 21 CFR Part 11 (Electronic Records and Electronic Signatures)FDA Guidance on Electronic Records ScopeICH E6(R3) GCP

Mapped Control Domains

Audit Logging
Access Control
Data Integrity
Electronic Signatures
Validation
Change Management

Deployment profiles

Regulated SaaS
Clinical Zero-Retention
Private Cloud

Get started in 3 steps

1

Open the template

Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.

2

Adapt the configuration

Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.

3

Validate before rollout

Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.