performing-privacy-impact-assessment

Featured

Automates the Privacy Impact Assessment (PIA) workflow including data flow mapping, privacy risk scoring matrices, GDPR Article 35 DPIA and CCPA/CPRA alignment checks, data inventory cataloging, and remediation tracking. Implements the NIST Privacy Framework PRAM methodology and ICO DPIA guidance for systematic identification and mitigation of privacy risks across processing activities. Use when conducting privacy assessments for new systems, evaluating regulatory compliance posture, or building automated privacy governance programs.

AI & Automation 16,326 stars 1981 forks Updated 2 weeks ago Apache-2.0

Install

View on GitHub

Quality Score: 97/100

Stars 20%
100
Recency 20%
90
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Performing Privacy Impact Assessment ## When to Use - When launching a new system, product, or processing activity that handles personal data - When conducting GDPR Article 35 Data Protection Impact Assessments (DPIAs) - When evaluating CCPA/CPRA compliance for data processing operations - When performing privacy risk assessments aligned to the NIST Privacy Framework - When mapping data flows across organizational boundaries and third-party processors - When building automated privacy governance and assessment pipelines - When preparing for regulatory audits or demonstrating accountability obligations ## Prerequisites - Familiarity with GDPR, CCPA/CPRA, and NIST Privacy Framework concepts - Access to data processing inventories and system architecture documentation - Python 3.8+ with required dependencies installed - Appropriate authorization from the Data Protection Officer (DPO) or privacy team - Knowledge of organizational data flows and third-party processor relationships ## Instructions ### Phase 1: Data Inventory and Processing Activity Catalog Build a complete inventory of personal data processing activities. Each record of processing activity (ROPA) entry must capture the data categories, legal basis, retention periods, and data subjects involved. ```python from agent import PrivacyImpactAssessmentEngine engine = PrivacyImpactAssessmentEngine() # Register a processing activity for assessment activity = engine.register_processing_activity( name="Custome...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
2 weeks ago
Language
Python
License
Apache-2.0

Bundled in these plugins

cybersecurity-skills

Similar Skills

Semantically similar based on skill content — not just same category

Data & Documents Listed

pia-generator

Generate structured privacy impact assessments so Claude can organize project privacy risks, controls, and decision points into a review-ready report.

1 Updated 2 months ago
maxwellokumu
AI & Automation Solid

gdpr-compliance-automator

GDPR compliance assessment and automation for data mapping, consent management, DSAR handling, and privacy impact assessments

1,356 Updated today
a5c-ai
AI & Automation Listed

gdpr-pia

Data Protection Impact Assessment (DPIA / GEB) workflow against AVG Art 35 — trigger check (AP criteria and WP 248), systematic description, necessity, risk analysis from the data subject's perspective, measures and residual risk, prior consultation with the Autoriteit Persoonsgegevens.

4 Updated 3 weeks ago
roodlicht