By GRCEngClub
Assess and manage GDPR compliance for applications: run readiness audits, generate evidence checklists, handle 72-hour breach notifications (Articles 33/34), execute Data Protection Impact Assessments (DPIA), and verify data subject rights implementation.
GDPR compliance readiness assessment
GDPR breach notification procedures and 72-hour requirement
Data Protection Impact Assessment (DPIA) guidance and execution
Generates comprehensive evidence collection checklists for EU General Data Protection Regulation (GDPR) compliance with focus on technical and organizational measures (TOMs) and data processing activities.
Verify data subject rights implementation (access, erasure, portability, etc.)
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
npx claudepluginhub grcengclub/claude-grc-engineering --plugin gdprDeploy a serverless trust center to publish your company's compliance posture. Supports AWS deployment with S3, CloudFront, Lambda, DynamoDB, Cognito, and WAF.
FedRAMP Rev 5 Plugin - Traditional authorization path with SSP/SAP/SAR/POA&M documentation and NIST 800-53 Rev 5 control mapping
CSA CCM Plugin - Cloud Security Alliance Cloud Controls Matrix with 197 controls and CAIQ support
US Export Controls Plugin - ITAR and EAR compliance for defense and dual-use technologies
SOC 2 Compliance Plugin - Trust Service Criteria expertise, Type I/II assessment support, and control mapping
DORA Plugin - EU Digital Operational Resilience Act for financial entities with ICT risk management (effective January 2025)
GDPR compliance assistant — code and system audits, privacy notice drafting, DPAs, DPIAs, data flow reviews, and authoritative article-cited Q&A.
GRC (Governance, Risk, and Compliance) domain knowledge — frameworks, controls, audits, evidence, ConMon, cross-framework mappings, document review, and operational workflows. Cloud-agnostic.
SOC2, HIPAA, and GDPR compliance validation, secrets scanning, compliance checklists, and regulatory documentation
Regulatory compliance verification for GDPR, SOC2, and HIPAA
Compliance and governance including regulatory mapping, security policies, audit readiness, GDPR, SOC2, and PCI-DSS compliance.