privacy-by-design

Featured

Use when building apps that collect user data. Ensures privacy protections are built in from the start—data minimization, consent, encryption.

AI & Automation 39,227 stars 6374 forks Updated today MIT

Install

View on GitHub

Quality Score: 99/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Privacy by Design ## Overview Integrate privacy protections into software architecture from the beginning, not as an afterthought. This skill applies Privacy by Design principles (GDPR Article 25, Cavoukian's framework) when designing databases, APIs, and user flows. Protects real users' data and builds trust. ## When to Use This Skill - Use when building apps that collect personal data (names, emails, locations, preferences) - Use when designing database schemas, APIs, or authentication flows - Use when the user mentions forms, user accounts, analytics, or third-party integrations - Use when deploying to production—verify privacy controls before launch ## Legal Frameworks **GDPR (EU)** — Primary reference. Article 25 mandates "data protection by design and by default." Applies to EU users and often adopted globally. **CCPA (California)** — Right to know, delete, opt-out of sale. Similar principles: minimize, disclose, allow control. **LGPD (Brazil)** — Aligned with GDPR. Purpose limitation, necessity, transparency. Applies to Brazil users. Design for the strictest framework you target; it often satisfies others. --- ## Core Principles ### 1. Data Minimization Collect only what is strictly necessary. Every field needs a documented justification. Avoid "we might need it later." ### 2. Purpose Limitation Store the purpose of each data point. Do not reuse data for purposes the user did not consent to. ### 3. Storage Limitation Define retention periods. Implement ...

Details

Author: sickn33
Repository: sickn33/antigravity-awesome-skills
Created: 4 months ago
Last Updated: today
Language: Python
License: MIT

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Listed

privacy-check

Use to assess Privacy by Design compliance and GDPR/data protection alignment for a feature or system.

27 Updated today

haabe

DevOps & Infrastructure Solid

gdpr-compliant

Apply GDPR-compliant engineering practices across your codebase. Use this skill whenever you are designing APIs, writing data models, building authentication flows, implementing logging, handling user data, writing retention/deletion jobs, designing cloud infrastructure, or reviewing pull requests for privacy compliance. Trigger this skill for any task involving personal data, user accounts, cookies, analytics, emails, audit logs, encryption, pseudonymization, anonymization, data exports, breach response, CI/CD pipelines that process real data, or any question framed as "is this GDPR-compliant?". Inspired by CNIL developer guidance and GDPR Articles 5, 25, 32, 33, 35.

34,158 Updated yesterday

github

AI & Automation Solid

gdpr-data-handling

Implement GDPR-compliant data handling with consent management, data subject rights, and privacy by design. Use when building systems that process EU personal data, implementing privacy controls, or conducting GDPR compliance reviews.

36,166 Updated yesterday

wshobson

AI & Automation Featured

implementing-gdpr-data-protection-controls

The General Data Protection Regulation (EU) 2016/679 (GDPR) is the EU's comprehensive data protection law governing the collection, processing, storage, and transfer of personal data. This skill cover

12,642 Updated today

mukul975

AI & Automation Listed

privacy-check

Evaluates product assumptions and plans for PII handling, user tracking, and data retention risks. Triggered during 'research' and 'blueprint' stages to enforce privacy-by-design.

0 Updated today

Gladisintelligible706