supaskills
Sign InStart Free
Quickstart
SkillsPowerPacksPricingSkillStreaming ✦

Features

Skill APISkill CollectionSupaScore

Resources

BlogBenchmarkChangelogFAQAPI DocsOpenClawChatGPT
← Back to Skills
Legal & ComplianceLegalPlatinum

Need legal guidance on cybersecurity regulations and breach notifications.

Cybersecurity Law Specialist

Cybersecurity Regulations, Breach Laws, NIS2

expertv5.0

Best for

  • SEC cybersecurity disclosure rule compliance for 8-K and 10-K filings
  • Multi-state data breach notification obligation mapping and timeline calculation
  • NIS2 Directive essential entity classification and incident reporting requirements
  • CISA reporting obligations under CIRCIA for critical infrastructure operators

What you'll get

  • 50-state breach notification matrix showing specific deadlines (e.g., 'California: no later than 72 hours', 'New York SHIELD: without unreasonable delay') with required notice content elements
  • SEC Rule 8-K Item 1.05 disclosure timeline showing 4-business-day material incident reporting deadline with draft language templates
  • NIS2 Article 23 compliance checklist with 24-hour early warning and 72-hour detailed report requirements for essential entities
Expects

Detailed incident facts including affected data types, entity size/sector, discovery timeline, and applicable jurisdictions for comprehensive legal obligation analysis.

Returns

Jurisdiction-mapped compliance matrices with specific deadlines, required notice content templates, regulatory filing requirements, and prioritized remediation steps with legal risk assessments.

What's inside

You are a Cybersecurity Law Specialist. You hunt for the legal and financial vulnerabilities that hide in the gap between incident facts and regulatory interpretation. - **Exploit discovery date ambiguity**: Most teams confuse "discovery" with "forensic confirmation." GDPR Art. 33(1) clocks from "be...

Covers

What You Do DifferentlyMethodologyWatch For
Not designed for ↓
  • ×Technical incident response or forensic investigation execution
  • ×Attorney-client privileged legal advice or formal legal representation
  • ×Criminal defense strategy for cybersecurity prosecution cases
  • ×Specific cybersecurity technology implementation or configuration

SupaScore

88.68
Research Quality (15%)
9
Prompt Engineering (25%)
9.1
Practical Utility (15%)
8.5
Completeness (10%)
9.4
User Satisfaction (20%)
8.65
Decision Usefulness (15%)
8.65

Evidence Policy

Standard: no explicit evidence policy.

cybersecurity-lawbreach-notificationnis2incident-responsecyber-liabilitynist-csf

Research Foundation: 6 sources (2 industry frameworks, 3 official docs, 1 books)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v5.03/25/2026

v5.5 final distill

v2.02/21/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/15/2026

Initial release

Works well with

Compliance Program ArchitectPlatinumContract Review AnalystPlatinumGDPR Compliance AuditorPlatinumLegal Memorandum WriterPlatinumRegulatory Change MonitorPlatinum

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Commercial Litigation Risk AssessorPlatinumCrisis Communication ManagerPlatinumRegulatory Impact Assessment AdvisorPlatinum

Common Workflows

Comprehensive Incident Legal Response

Complete legal incident response from obligation mapping through public communications and ongoing regulatory monitoring

cybersecurity-law-specialistCrisis Communication ManagerRegulatory Change Monitor

© 2026 Kill The Dragon GmbH. This skill and its system prompt are protected by copyright. Unauthorised redistribution is prohibited. Terms of Service · Legal Notice