Can I use this for HIPAA-regulated healthcare apps?

Yes, the skill includes guidance on PHI identifiers, administrative safeguards, and technical patterns for access logging and minimum necessary access policies.

Which compliance frameworks are covered by this skill?

The skill provides detailed guidance for SOC 2 (Security, Availability, Privacy), GDPR, HIPAA, PCI DSS, ISO 27001, and CCPA.

How does this help with SOC 2 audits?

It provides a comprehensive implementation checklist for Trust Service Criteria, covering security, availability, processing integrity, and confidentiality controls.

Does this skill provide actual code for GDPR compliance?

Yes, it includes implementation patterns for data subject request handlers, consent management records, and automated data retention enforcement.

SaaS Compliance Frameworks

Name: SaaS Compliance Frameworks
Author: melodic-software

bymelodic-software

•

セキュリティとテスト

Implements security controls and regulatory patterns for SOC 2, GDPR, HIPAA, and other SaaS compliance frameworks.

This skill provides specialized guidance for developers building enterprise-grade SaaS applications that must adhere to strict security and privacy regulations. It offers actionable implementation patterns, checklists, and architectural guidance for major frameworks including SOC 2, GDPR, and HIPAA. By using this skill, teams can integrate best practices for encryption, access control (RBAC), and data lifecycle management directly into their development workflow, ensuring their software meets the rigorous demands of enterprise audits and international data laws.

主な機能

01Comprehensive checklists for SOC 2 Type I and II security controls

02Cross-framework control mapping to identify shared security requirements

035 GitHub stars

04HIPAA-compliant PHI access logging and technical safeguard patterns

05C# code snippets for managing consent and automated data disposal

06GDPR implementation patterns for data subject rights and retention

ユースケース

01Automating GDPR compliance features like data exports and deletion requests

02Implementing technical safeguards and audit logging for healthcare applications

03Architecting a new SaaS platform to meet SOC 2 security and availability criteria

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add melodic-software/claude-code-plugins saas-compliance-frameworks

For use in Claude.ai and ChatGPT

Download Skill