vn-pdpl

Solid

Expert Vietnam Personal Data Protection Law (PDPL) compliance advisor for Law No. 91/2025/QH15 and implementing Decree 356/2025/ND-CP (effective January 1, 2026). Use this skill for gap analysis against the Vietnam PDPL, data subject rights fulfilment workflows, cross-border data transfer impact assessments, privacy notices and internal policies, breach notification procedures, sector-specific obligations (finance, AI, cloud, blockchain), and DPO qualification reviews. Trigger whenever a user mentions Vietnam data privacy, VN-PDPL, Nghị định 356, Vietnamese personal data, or cross-border transfers involving Vietnamese citizens' data.

AI & Automation 488 stars 103 forks Updated today MIT

Install

View on GitHub

Quality Score: 91/100

Stars 20%
90
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Vietnam Personal Data Protection Law (PDPL) Skill ## Overview You are an expert advisor on Vietnam's **Law on Personal Data Protection No. 91/2025/QH15** (passed 26 June 2025, effective **1 January 2026**) and its implementing regulation **Decree 356/2025/ND-CP** (31 December 2025). This is Vietnam's first comprehensive personal data protection law, administered by the **Ministry of Public Security** (specialized agency for personal data protection). The law applies to: - Vietnamese organisations and individuals processing personal data in Vietnam - Foreign organisations and individuals processing data of Vietnamese data subjects (extraterritorial reach) **Always read the relevant reference file before drafting detailed guidance:** - `references/articles-overview.md` — law structure, definitions, data categories, rights, obligations, penalties - `references/decree-356-implementation.md` — sector rules, consent methods, DPO qualifications, response timeframes --- ## Core Concepts ### Data Categories **Basic personal data (11 items):** full name, date/place of birth and death, gender, current and permanent address, nationality, personal image, phone number, ID/passport/license plate numbers, marital status, family relationships, digital account information. **Sensitive personal data (13 items):** racial/ethnic origin, political views, religious/philosophical views, private life/personal secrets/family secrets, health and medical status, biometric and genetic data, se...

Details

Author
Sushegaad
Repository
Sushegaad/Claude-Skills-Governance-Risk-and-Compliance
Created
2 months ago
Last Updated
today
Language
HTML
License
MIT

Similar Skills

Semantically similar based on skill content — not just same category

Data & Documents Solid

dpdpa

Expert India Digital Personal Data Protection Act, 2023 (DPDPA) compliance advisor. Use this skill whenever a user asks about the DPDPA, DPDP Act, DPDP Rules 2025, India data privacy law, Data Fiduciary obligations, Data Principal rights, Significant Data Fiduciary, Data Protection Board of India, consent under DPDPA, notice requirements, breach notification India, children's data India, cross-border data transfer India, India privacy compliance, DPDPA gap analysis, DPDPA vs GDPR, or any obligation under India's personal data protection framework. Also trigger for: "Section 6 consent", "Section 7 legitimate uses", "Section 9 children's data", "Section 10 SDF", "Section 16 cross-border", "Rule 6 breach notification", "Rule 13 SDF obligations", "Data Protection Board complaint", "verifiable parental consent India", "DPDPA compliance roadmap", or "India privacy law global company".

488 Updated today
Sushegaad
Data & Documents Solid

lgpd

Expert LGPD compliance advisor for Brazil's Lei Geral de Proteção de Dados (Law 13,709/2018). Use this skill whenever a user asks about LGPD, Brazilian data protection, ANPD, personal data processing in Brazil, data subject rights under Brazilian law, legal bases for processing, sensitive data handling, DPO appointment in Brazil, data breach notification to ANPD, LGPD penalties (fines up to 2% of revenue / R$50M), international data transfers from Brazil, LGPD gap assessments, privacy policy drafting for Brazilian operations, DPIA under LGPD, consent management, or comparing LGPD with GDPR. Trigger for any Brazil privacy or data protection question even if LGPD is not named explicitly.

488 Updated today
Sushegaad
Data & Documents Listed

data-protection-law

Swiss data protection law analysis — applies the nDSG/FADP framework (in force 1.9.2023), assesses GDPR adequacy interplay, maps cantonal data protection laws (IDG/KDSG/LIPAD), conducts DSFAs/DPIAs, and evaluates cross-border transfer mechanisms (adequacy, SCCs, BCRs, TIA). Trigger when: a user asks 'are we nDSG/GDPR compliant', 'do we need a data processing agreement', 'can we transfer data to [country]', 'do we need a DPIA/DSFA', 'what data protection obligations apply to us', 'is our privacy policy compliant', 'what rights do data subjects have under Swiss law', or references FDPIC, nDSG, DSG, FADP, or cantonal DP laws. Also triggered when the data-protection agent is invoked. Do NOT trigger for: financial regulatory data processing in fintech (use compliance-frameworks alongside this skill); document analysis tasks (use swiss-document-analysis); attorney-client privilege routing (use privacy-routing skill first); general corporate compliance not involving personal data (use corporate-law-agent).

19 Updated today
fedec65
AI & Automation Featured

implementing-gdpr-data-protection-controls

The General Data Protection Regulation (EU) 2016/679 (GDPR) is the EU's comprehensive data protection law governing the collection, processing, storage, and transfer of personal data. This skill cover

12,642 Updated today
mukul975
AI & Automation Solid

gdpr-dsgvo-expert

GDPR and German DSGVO compliance automation. Scans codebases for privacy risks, generates DPIA documentation, tracks data subject rights requests. Use for GDPR compliance assessments, privacy audits, data protection planning, DPIA generation, and data subject rights management.

16,642 Updated yesterday
alirezarezvani