Canonical FrameworkCompliance & Audit

GxP / GMP Annex 11

GxP / GMP Annex 11 control-mapping starter for computerised systems supporting regulated pharmaceutical operations. It references validation, ALCOA+ integrity, audit, change, backup, and supplier topics, with configurable gateway controls or evidence fields where applicable.

This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.

Regions

EU, Global

References

4 references

Mapped Control Domains

7 mapped domains

Deployment

Regulated SaaS, Clinical Zero-Retention, Private Cloud

Referenced Frameworks, Standards & Obligations

EU GMP Annex 11 (Computerised Systems)EMA GxP GuidelinesPIC/S GMP Guide PE 009-17WHO TRS 1033 Annex 4 (Data Integrity)

Mapped Control Domains

Audit Logging
Data Integrity
Access Control
Validation
Change Management
Data Backup
Supplier Qualification

Deployment profiles

Regulated SaaS
Clinical Zero-Retention
Private Cloud

Get started in 3 steps

1

Open the template

Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.

2

Adapt the configuration

Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.

3

Validate before rollout

Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.