feat(storage): add doc on hosting health data MTA-6713

pages/block-storage/how-to/host-healthcare-data.mdx

@@ -0,0 +1,65 @@
+---
+title: How to create a compliant volume to host healthcare data
+description: This page details the steps to follow to create a compliant Scaleway Block Storage volume to host healthcare data
+tags: 
+dates:
+  validation: 2025-11-12
+  posted: 2025-11-12
+---
+import Requirements from '@macros/iam/requirements.mdx'
+
+When hosting healthcare data using Scaleway Block Storage, you must follow the recommendations outlined in the [shared responsibility model](/block-storage/reference-content/storage-shared-responsibility-model/) to ensure compliance with legal and regulatory requirements, such as data protection laws, and industry standards.
+
+Adhering to these guidelines helps safeguard sensitive information against unauthorized access, breaches, and data loss, while also clarifying the roles and responsibilities between the cloud provider and the customer.
+
+This documentation provides the following elements:
+
+- A procedure to create a compliant volume
+- Information on prohibited actions
+- Compliant encryption methods
+- Compliant deletion methods
+- A checklist to ensure you are ready to safely store healthcare data
+
+<Requirements />
+
+- A Scaleway account logged into the [console](https://console.scaleway.com)
+- [Owner](/iam/concepts/#owner) status or [IAM permissions](/iam/concepts/#permission) allowing you to perform actions in the intended Organization
+- Signed an HDS contract with Scaleway for the garantees outlined in the [shared responsibility model]() to apply
+
+## How to create a compliant volume
+
+Even though you can use an existing volume to host healthcare data, we strongly recommend you create a dedicated volume for this purpose.
+
+1.
+
+## Prohibited actions on a compliant volume
+
+to host healthcare data, you must comply to the following requirements:
+
+
+
+<Message type="important">
+Failure to comply with these requirements may lead to voiding compliance on the objects contained in the bucket.
+</Message>
+
+## How to encrypt data
+
+
+
+## How to delete objects
+
+data must be deleted in a compliant way to make sure data can not be retrieved by any means immediately afterward. When using the HDS-compliant method (using the `PutBucketEncryption` action), Scaleway encrypts your uploaded objects with a dedicated key that will be instantly deleted upon receiving a deletion request for the targeted objects.
+
+This mechanism guarantees your objects can not be immediately retrieved, even if it takes additionnal time to process the delete of all the remaining chunks of your deleted objects.
+
+## Compliant bucket creation checklist
+
+Make sure that your bucket follows the requirements below:
+
+1. Make sure you [created your volume](#how-to-create-a-compliant-volume) in the **France - Paris** (`fr-par`) region.
+
+
+
+7. Follow the provided security best practices at all times.
+
+Refer to the [Block Storage Shared Responsibility Model](/block-storage/reference-content/storage-shared-responsibility-model/)) for comprehensive information on the legal framework to host healthcare data.

pages/block-storage/menu.ts

@@ -30,6 +30,10 @@ export const blockStorageMenu = {
           label: 'Mount a volume',
           slug: 'mount-a-volume',
         },
+        {
+          label: 'Host healthcare data',
+          slug: 'host-healthcare-data',
+        },
         {
           label: 'Increase the volume size',
           slug: 'increase-block-volume',
@@ -90,6 +94,10 @@ export const blockStorageMenu = {
     },
     {
       items: [
+        {
+          label: 'Storage shared responsibility model',
+          slug: 'storage-shared-responsibility-model',
+        },
         {
           label:
             'Differences between Block Storage volumes',