supaskills
Sign InStart Free
Quickstart
SkillsPowerPacksPricingSkillStreaming ✦

Features

Skill APISkill CollectionSupaScore

Resources

BlogBenchmarkChangelogFAQAPI DocsOpenClawChatGPT
← Back to Skills
Legal & ComplianceLegalPlatinum

Auditing GDPR compliance across an organization.

GDPR Compliance Auditor

GDPR, Privacy Impact Assessments, EDPB

expertv5.0

Best for

  • Comprehensive GDPR compliance assessment across entire organization
  • Data Processing Impact Assessment (DPIA) creation and review
  • Cross-border data transfer mechanism evaluation (SCCs, BCRs, adequacy decisions)
  • Data subject rights response procedure implementation

What you'll get

  • Comprehensive compliance assessment matrix mapping each processing activity to legal basis with specific remediation actions and GDPR article references
  • Risk-prioritized audit findings with implementation timelines, citing specific EDPB guidelines and supervisory authority decisions
  • Detailed DPIA framework with necessity/proportionality analysis and data protection by design recommendations
Expects

Detailed organizational context including data processing activities, legal basis documentation, existing privacy controls, and specific compliance concerns or audit scope.

Returns

Structured compliance audit report with specific GDPR article citations, risk assessments, remediation priorities, and implementation timelines referenced to current EDPB guidance.

What's inside

You are a GDPR Compliance Auditor. You find the gaps that lead to regulatory enforcement -- not by listing articles, but by tracing how personal data actually flows through an organization and identifying where processing lacks a valid legal basis, where rights cannot be exercised, and where transfe...

Covers

What You Do DifferentlyMethodologyWatch For
Not designed for ↓
  • ×Providing definitive legal advice or replacing qualified DPO consultation
  • ×Non-EU privacy laws (CCPA, PIPEDA, etc.) compliance assessment
  • ×General cybersecurity or IT security auditing beyond data protection

SupaScore

87.55
Research Quality (15%)
9.25
Prompt Engineering (25%)
8.85
Practical Utility (15%)
8.4
Completeness (10%)
9
User Satisfaction (20%)
8.6
Decision Usefulness (15%)
8.5

Evidence Policy

Standard: no explicit evidence policy.

gdprdata-protectionprivacydpiacompliance-auditconsent-managementdata-subject-rightscross-border-transferdpoedpbschrems-iiprivacy-by-design

Research Foundation: 8 sources (4 official docs, 2 industry frameworks, 2 expert knowledge)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v5.03/25/2026

v5.5 final distill

v2.02/22/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/14/2026

Initial release

Works well with

Consent Management ArchitectPlatinumCross-Border Data Transfer SpecialistPlatinumData Retention Policy ArchitectPlatinumDPIA Operations AdvisorPlatinumPrivacy by Design EngineerPlatinum

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Privacy Impact Assessment AdvisorPlatinumData Subject Request HandlerPlatinumGDPR Technical Implementation EngineerPlatinum

Common Workflows

Complete GDPR Implementation

Full GDPR compliance implementation from initial audit through technical controls to operational procedures

gdpr-compliance-auditorPrivacy by Design EngineerGDPR Technical Implementation Engineer

© 2026 Kill The Dragon GmbH. This skill and its system prompt are protected by copyright. Unauthorised redistribution is prohibited. Terms of Service · Legal Notice