Access Required

Enter the access code to continue.

Incorrect code

Check Your AI Policy Against NZ Healthcare Standards

Upload your AI usage policy to assess compliance with HISF (HISO 10029:2023) and CS-CMM2 minimum standards for New Zealand healthcare organisations.

Privacy Notice: Your policy text is sent to Anthropic's Claude API for analysis. Do not upload policies containing patient health information (PHI), trade secrets, or classified information. See Anthropic's Privacy Policy.

Upload Your AI Policy

Drag and drop your policy document here, or click to browse

Supports: PDF, TXT, DOCX, or paste text below

or paste your policy text

Policy Analysis

Compliance Frameworks We Assess

HISF Security Governance

HMS01/HMS02 compliance: security roles, responsibilities, and documented policies (HISO 10029).

Access & Authentication

MFA requirements, least privilege access, and PHI protection per HISF and CS-CMM2 Standard 6.

Risk Management

CS-CMM2 Standard 2: identifying, assessing, and managing cyber security risks.

Monitoring & Detection

CS-CMM2 Standard 7: detecting unusual behaviour and security anomalies.

Backup & Recovery

CS-CMM2 Standard 9 and HISF requirements for encrypted backups and data recovery.

Incident Response

CS-CMM2 Standard 10: documented response planning and HISF incident management processes.