Industry Playbooks Industry Use Cases On this page
Keeptrusts provides production-ready policy configurations tailored to specific industries and their regulatory requirements. Each guide includes a complete policy stack, example configurations, and explanations of how each policy control addresses the industry's compliance needs.
Use this page when
You need to find the right Keeptrusts industry policy configuration for your regulatory environment.
You are evaluating which pre-built policy stack matches your compliance requirements.
You want to compare Keeptrusts coverage across multiple regulatory frameworks before choosing a starting template.
Primary audience
Primary: Technical Leaders
Secondary: Technical Engineers, AI Agents
Regulated Industries
Industry Key Regulations Primary Policies Finance SOX, PCI DSS, SEC, Dodd-Frank financial-compliance, mnpi-filter, pii-detector, dlp-filterHealthcare (HIPAA) HIPAA, HITECH hipaa-phi-detector, pii-detector, audit-loggerHealthcare (EU GDPR) GDPR, EU AI Act pii-detector, data-routing-policy, bias-monitorLegal Attorney-client privilege, UPL legal-privilege, upl-filter, pii-detectorGovernment FedRAMP, FISMA, NIST rbac, cjis-mode, dlp-filter, audit-loggerDefense (US) ITAR, EAR itar-ear-filter, entity-list-filter, cjis-modeDefense (EU) EU dual-use, EU AI Act dual-use-filter, human-oversight, data-routing-policy
Emerging & Specialized
Industry Key Concerns Primary Policies Education Student privacy, FERPA/COPPA student-privacy, safety-filter, bias-monitorAutomotive Functional safety, ISO 26262 safety-filter, quality-scorer, human-oversightHR & Recruitment Employment discrimination, bias bias-monitor, pii-detector, human-oversightLaw Enforcement CJIS, due process, bias cjis-mode, bias-monitor, audit-loggerCritical Infrastructure NERC CIP, ICS/SCADA dlp-filter, rbac, safety-filterEU AI Act Compliance EU AI Act (high-risk) human-oversight, bias-monitor, quality-scorer
For AI systems
Canonical terms: Keeptrusts industry policy configurations, policy pack, policy chain, gateway enforcement.
Key policies referenced across industries: pii-detector, dlp-filter, rbac, audit-logger, safety-filter, quality-scorer, bias-monitor, human-oversight, safety-filter, prompt-injection.
Specialized policies: itar-ear-filter, entity-list-filter, mnpi-filter, hipaa-phi-detector, legal-privilege, upl-filter, dual-use-filter, student-privacy, cjis-mode, financial-compliance, data-routing-policy, citation-verifier.
Config command: kt gateway run --policy-config ./policy-config.yaml.
Each industry page contains a complete policy-config.yaml ready for deployment.
For engineers
Each industry page includes a complete policy-config.yaml you can deploy directly with kt gateway run.
Validate deployment: kt doctor confirms all policies in the chain are active.
Monitor enforcement: kt events tail --policy <policy-name> streams real-time decisions.
Export audit evidence: kt export create --format json --filter "policy=<policy-name>".
Use the Console Templates page to manage industry configurations across multiple gateways.
For leaders
Each industry configuration maps directly to specific regulatory frameworks (SOX, HIPAA, ITAR, GDPR, EU AI Act, FedRAMP, etc.).
Pre-built policy stacks reduce time-to-compliance from months to hours.
Audit evidence is automatically generated — reducing manual audit prep from weeks to days.
Cost Center and Wallets provide per-team, per-program budget controls with real-time visibility.
Escalation workflows route policy violations to designated compliance officers automatically.
Next steps