The client intended to perform a risk assessment of their current practices, documentation, infrastructure, and software to determine if any business and/or regulatory compliance risks existed, and to develop a mitigation plan. The assessment was to be conducted with respect to US and EU regulatory requirements (for example, GDPR, Annex 11, HIPAA, FDA predicate rules, and 21 CFR Part 11).