Stats
Actions
Tags
Help us improve
Share bugs, ideas, or general feedback.
From policystack
Explains consent and policy-text posture implied by declared PolicyStack jurisdictions. Use when reviewing or choosing the jurisdictions array in policystack.ts.
npx claudepluginhub jamiedavenport/policystack --plugin policystackHow this skill is triggered — by the user, by Claude, or both
Slash command
/policystack:policystack-jurisdictionThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
<!-- Generated by @policystack/sdk renderSkillPack() — do not edit by hand. Run `vp run gen`. -->
Provides requirements matrix and geolocation-based implementation for cookie compliance across EU ePrivacy, UK PECR, US CCPA/CPRA, Brazil LGPD. Useful for global websites.
Guides building multi-jurisdiction privacy compliance matrices for organizations across countries like EU GDPR, UK GDPR, Brazil LGPD, China PIPL. Covers common requirements, deltas, gap analysis, harmonised controls.
Harmonizes sensitive data classification across GDPR, CCPA, HIPAA, LGPD with cross-jurisdiction mapping matrix for multinational compliance.
Share bugs, ideas, or general feedback.
Explain what a declared jurisdictions set implies. Posture and policy-text
tier are read straight from the single canonical table (the same row the
policy renderer and the consent runtime read, so prose and banner always
agree). Membership is frozen at 1.0.
br — opt-in, equivalent policy textca — opt-in, equivalent policy textch — opt-in, equivalent policy texteea — opt-in, specific policy textrow — opt-in, equivalent policy textuk — opt-in, specific policy textus — opt-out, equivalent policy textus-ca — opt-out, specific policy text, inherits us, GPC legally bindingus-co — opt-out, equivalent policy text, inherits us, GPC legally bindingus-ct — opt-out, equivalent policy text, inherits us, GPC legally bindingus-va — opt-out, equivalent policy text, inherits us, GPC legally bindingopt-in (EEA/UK/CH/BR/CA/ROW): no non-essential
data/cookies until affirmative consent; the banner defaults off.
opt-out (US and US states): lawful by default after notice; the banner
defaults on, gated by Do-Not-Sell / GPC.specific (eea, uk, us-ca): hand-authored,
jurisdiction-specific prose. equivalent: posture-correct text via the
parent jurisdiction — a legitimate, shippable tier that emits the
jurisdiction-generic-policy-text warning so the gap is explicit, not
silent. Treat that warning as acknowledged, not failed.us. Any
us-<state> not in the table resolves to us (opt-out); row is the
conservative opt-in catch-all. A code that is neither a table entry nor a
us-* tail is rejected as jurisdiction-unknown.For each declared id: state its consent model, its policy-text tier (and the
parent it borrows from when equivalent), and whether GPC is binding. Call
out every equivalent id as a jurisdiction-generic-policy-text warning
the user must accept. The effective posture across a multi-jurisdiction set is
the most protective (any opt-in member ⇒ treat as opt-in).