Healthcare (EU — GDPR)
EU healthcare control-mapping starter for GDPR Article 9 special-category health data, with configurable data-minimization, purpose-limitation, and automated-decision safeguards. Includes controls relevant to EU AI Act risk programs, such as bias monitoring, transparency, and human oversight, but requires independent legal and risk assessment.
This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.
EU, EEA, UK
8 references
5 mapped domains
Regulated SaaS, Sovereign Region
Referenced Frameworks, Standards & Obligations
Mapped Control Domains
Deployment profiles
Get started in 3 steps
Open the template
Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.
Adapt the configuration
Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.
Validate before rollout
Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.
More Industry-Specific templates
Finance
Financial services template for PCI-aware redaction, MNPI suppression, supervisory disclaimers, and auditable AI operations.
Healthcare (US — HIPAA)
HIPAA-aligned governance starter for US healthcare organizations using AI systems with PHI; validate configuration and non-gateway safeguards before use.
Healthcare
Global healthcare AI governance starter for health-data protection, clinical safety, and regulatory control mapping across jurisdictions.