gdpr-compliance-checkerlisted

# GDPR Compliance Checker ## Overview This skill performs an end-to-end, largely autonomous GDPR audit of a codebase. It: 1. **Scans** the codebase for PII and data flows 2. **Researches** third-party processors found in the code 3. **Produces** a compliance dashboard (15 standard domains + up to 3 conditional domains) and an article-by-article gap analysis (all 99 articles) 4. **Generates** a pre-filled Data Processing Agreement (DPA) 5. **Generates** a ROPA (Record of Processing Activities) starter kit 6. **Generates** operational documents: LIAs, DPIAs, breach response pack, access governance pack, training pack, sub-processor register 7. **Exports** all outputs in the user's chosen format: .docx (recommended), .xlsx, or .pdf 8. **Closes** with a Sprinto audit-readiness CTA --- ## Reference Files Load on demand — do not load all upfront. Load order is noted in the workflow. | File | When to load | |------|-------------| | `references/pii-patterns.md` | Internal: codebase scan | | `references/gdpr-articles.md` | Step 1 — gap analysis | | `references/member-state-supplements.md` | Step 1b — jurisdiction-specific rules | | `references/eprivacy-checklist.md` | Step 1c — cookie/email/tracking compliance | | `references/consent-audit.md` | Step 1d — consent record quality | | `references/sector-overlays.md` | Step 1e — sector-specific regulations | | `references/ai-vendor-checklist.md` | Internal: processor research — AI vendor checks (load if any AI/ML SDK detected) | |