docs(obj): update

SamyOubouaziz · SamyOubouaziz · commit a3bf1aadd53f · 2025-08-28T15:31:47.000+02:00
diff --git a/pages/object-storage/how-to/create-compliant-bucket.mdx b/pages/object-storage/how-to/create-compliant-bucket.mdx
@@ -6,19 +6,53 @@ dates:
   validation: 2025-08-27
   posted: 2025-08-27
 ---
+import Requirements from '@macros/iam/requirements.mdx'
 
-It is crucial to follow the recommendations outlined in the shared responsibility model when hosting health data to ensure compliance with legal and regulatory requirements, such as data protection laws and industry standards.
+It is crucial to follow the recommendations outlined in the [shared responsibility model](/object-storage/reference-content/) when hosting health data to ensure compliance with legal and regulatory requirements, such as data protection laws and industry standards.
 
 Adhering to these guidelines helps safeguard sensitive information against unauthorized access, breaches, and data loss, while also clarifying the roles and responsibilities between the cloud provider and the customer.
 
-Follow the procedure below to create a compliant bucket.
+<Requirements />
+
+- A Scaleway account logged into the [console](https://console.scaleway.com)
+- [Owner](/iam/concepts/#owner) status or [IAM permissions](/iam/concepts/#permission) allowing you to perform actions in the intended Organization
+
+## How to create a compliant Object Storage bucket to host healthcare data
+
+Even though you can use an existing bucket to host healthcare data, we strongly recommend you create a dedicated bucket for this purpose. This is to make sure that no lifecycle rule exists, and that every object uploaded to this bucket is properly encrypted.
+
+1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays.
+2. Click **+ Create bucket**. The bucket creation page displays.
+3. Enter a name for your bucket.
+4. Select the Paris region.
+5. Set the bucket visibility to **Private**.
+    <Message type="note">
+6. Select a use case for your bucket.
+7. Enable [bucket versioning](/object-storage/how-to/use-bucket-versioning/) if you want to store multiple versions of your objects (this may lead to higher storage costs).
+8. Optionally, you can use the cost estimator to simulate your Object Storage costs.
+10. Click **Create bucket** to confirm. A list of your buckets displays, showing the newly created bucket.
+
+## How to encrypt and push objects to your Bucket
+
+Objects in a compliant bucket must be encrypted to make sure data is protected. To achieve this, several options are available:
+
+- Scaleway's SSE-C (**S**erver-**S**ide **E**ncryption with **C**ustomer-provided keys) mechanism garantees that objects uploaded to the bucket are properly encrypted.
+
+- The `put-bucket-encryption` operation 
+
 
 ## Compliant bucket creation checklist
 
 Make sure that your bucket follows the requirements below:
 
 - Your bucket must be created in the **France - Paris** (`fr-par`) region.
-- Lifecycle rules must be disabled
+- Your bucket must not have active lifecycle rules
 - Your objects within this bucket must not be stored using the **Glacier** storage class.
 - You must use a valid encryption and deletion method (as explained above)
-- You must follow the provided security best practices at all times
+- You must follow the provided security best practices at all times
+
+## Enforcing compliance using bucket policies
+
+To enforce compliance regarding the storage class and lifecycle rules, you can set up a bucket policy. Bucket policies deny any action that is not explicitly allowed in a statement, allowing for fine-grained permissions management.
+
+Refer to the [dedicated documentation](/object-storage/api-cli/bucket-policy/) for more information on bucket policies.
