Skill

domain-fintech:regulatory-compliance

Guides regulatory compliance implementation: SOX controls (segregation of duties, access controls, change management), PSD2 (SCA, open banking APIs, TPP authorization), KYC/AML (CDD, EDD, PEP screening, sanction lists), GDPR for financial data, MiFID II, Basel III, and regulatory reporting pipelines. Use when implementing compliance features or auditing financial systems.

Install

npx claudepluginhub rnavarych/alpha-engineer --plugin domain-fintech

Tool Access

This skill is limited to using the following tools:

ReadGrepGlobBash

Preview

- Implementing SOX segregation of duties and access control evidence collection

Supporting Assets

references/kyc-aml-gdpr.mdreferences/mifid-basel-reporting.mdreferences/sox-psd2-controls.md

SKILL.md

Similar Skills

agent-harness-construction

Designs and optimizes AI agent action spaces, tool definitions, observation formats, error recovery, and context for higher task completion rates.

everything-claude-code

156.2k

accessibility

Designs, implements, and audits WCAG 2.2 AA accessible UIs for Web (ARIA/HTML5), iOS (SwiftUI traits), and Android (Compose semantics). Audits code for compliance gaps.

everything-claude-code

156.2k

agent-eval

Compares coding agents like Claude Code and Aider on custom YAML-defined codebase tasks using git worktrees, measuring pass rate, cost, time, and consistency.

everything-claude-code

156.2k

Stats

Parent Repo Stars9

Parent Repo Forks0

Last CommitMar 3, 2026

Actions

View Source View Plugin View on GitHub View README

domain-fintech:regulatory-compliance

When to use

Implementing SOX segregation of duties and access control evidence collection

Building PSD2 SCA flows or qualifying for TRA exemptions

Implementing KYC/AML (CDD, EDD, PEP screening, sanctions checking)

Navigating GDPR deletion requests against AML 5-7 year retention obligations

Meeting MiFID II best execution or transaction reporting requirements

Designing automated regulatory reporting pipelines with audit trails

Core principles

SoD in code, not just policy — check approver != initiator at the application layer; policy documents don't stop fraud

Legal obligation beats right to erasure — AML retention overrides GDPR deletion; annotate retained records with legal basis

Real-time sanctions screening — onboarding-only screening misses exposure; screen every transaction against updated lists

Automate evidence before the audit — continuous control monitoring; manual evidence gathering at audit time is too late

Version-control transformation rules — regulators audit the logic, not just the output; treat report transforms as code

Reference Files

references/sox-psd2-controls.md — SOX segregation of duties, access controls, change management, evidence collection automation; PSD2 SCA factors, dynamic linking, exemptions (TRA, low-value, recurring), open banking API standards

references/kyc-aml-gdpr.md — CDD/EDD tiers, PEP screening with fuzzy matching, sanctions list sources and update SLAs, transaction monitoring rules, GDPR retention vs AML deletion tension, data minimization

references/mifid-basel-reporting.md — MiFID II best execution and record keeping, Basel III capital/liquidity ratios, regulatory reporting pipeline architecture with validation gating and resubmission workflow

domain-fintech:regulatory-compliance

Install

Tool Access

Preview

Supporting Assets

SKILL.md

Similar Skills

domain-fintech:regulatory-compliance

Install

Tool Access

Preview

Supporting Assets

SKILL.md

Regulatory Compliance

When to use

Core principles

Reference Files

Similar Skills

Regulatory Compliance

When to use

Core principles

Reference Files