Does this replace a formal legal or security audit?

No, this skill provides technical implementation guidance and best practices. It is a powerful tool for developers to prepare for audits, but final compliance should be verified by legal and security professionals.

Which compliance frameworks does this skill support?

The skill provides guidance for GDPR (EU data protection), HIPAA (US healthcare), SOC2 (SaaS security), and PCI-DSS (payment card industry) standards.

Can this skill generate code for GDPR user rights?

Yes, it provides specific implementation patterns for 'Right to Erasure' (Article 17) and Data Portability (Article 20), including data export and anonymization logic.

How does it assist with SOC2 requirements?

It focuses on the Trust Services Criteria (TSC), providing code for logical access controls, multi-factor authentication (MFA), role-based access control (RBAC), and system monitoring.

Regulatory Compliance Check

Name: Regulatory Compliance Check
Author: itsimonfredlingjack

byitsimonfredlingjack

0•

セキュリティとテスト

Performs comprehensive compliance audits and provides implementation guidance for GDPR, HIPAA, SOC2, and PCI-DSS standards.

The Regulatory Compliance Check skill empowers developers to build and maintain software that meets rigorous global standards. By acting as an automated compliance consultant, it identifies applicable regulations based on business logic, maps requirements to technical controls, and provides ready-to-implement code patterns for privacy by design. Whether you are building a healthcare app needing HIPAA-compliant PHI handling or a SaaS platform preparing for a SOC2 audit, this skill provides the architectural patterns for consent management, data minimization, and secure access controls necessary to pass audits and protect user data.

主な機能

01HIPAA-compliant audit logging and PHI encryption frameworks

02Automated regulatory mapping for GDPR, HIPAA, SOC2, and PCI-DSS

030 GitHub stars

04Implementation patterns for GDPR 'Right to Erasure' and data portability

05Data minimization and pseudonymization strategies for privacy by design

06SOC2-aligned logical access control and MFA enforcement logic

ユースケース

01Architecting secure data processing pipelines that satisfy PCI-DSS requirements

02Implementing standardized consent management and audit trails for SaaS products

03Auditing an existing codebase for data privacy gaps and regulatory risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add itsimonfredlingjack/codex-dev-plugin compliance-check

For use in Claude.ai and ChatGPT

Download Skill