docs(obj): update

Author: SamyOubouaziz

pages/object-storage/how-to/create-compliant-bucket.mdx

@@ -81,6 +81,12 @@ If you do not use Scaleway's SSE-C to encrypt your data, you must use Scaleway's
 This mechanism is designed to handle compliant deletion of your data, and not its encryption. Make sure to use it in combination with a compliant encryption method, such as SSE-C or any other customer-side approach to upload your objects.
 </Message>
 
+## Enforcing compliance using bucket policies
+
+To enforce compliance regarding the storage class and lifecycle rules, you can set up a bucket policy. **Bucket policies automatically deny any action that is not explicitly allowed in a statement**, allowing for fine-grained permissions management.
+
+Refer to the [dedicated documentation](/object-storage/api-cli/bucket-policy/) for more information on bucket policies.
+
 ## Compliant bucket creation checklist
 
 Make sure that your bucket follows the requirements below:
@@ -93,12 +99,10 @@ Make sure that your bucket follows the requirements below:
 
 4. Use a valid [encryption method](#how-to-encrypt-objects).
 
-4. Use a valid [deletion method](#how-to-delete-objects).
+5. Use a valid [deletion method](#how-to-delete-objects).
 
-6. Follow the provided security best practices at all times.
-
-## Enforcing compliance using bucket policies
+7. Use [bucket policies](#enforcing-compliance-using-bucket-policies) to restrict permissions and prevent unwanted operations.
 
-To enforce compliance regarding the storage class and lifecycle rules, you can set up a bucket policy. Bucket policies deny any action that is not explicitly allowed in a statement, allowing for fine-grained permissions management.
+6. Follow the provided security best practices at all times.
 
-Refer to the [dedicated documentation](/object-storage/api-cli/bucket-policy/) for more information on bucket policies.
+Refer to the [Object Storage Shared Responsibility Model] for comprehensive information on the legal framework to host healthcare data.