How does it handle data residency for GDPR?

It provides specific strategies for regional data localization, EU-based backup configurations, and automated data erasure (Right to Erasure) workflows.

Can it help remediate existing security vulnerabilities?

Yes, the skill includes a 'Security Misconfiguration Warning' section that helps identify and fix common issues like public S3 buckets, hardcoded secrets, and overly permissive IAM roles.

Does this skill provide legally binding compliance certification?

No, this skill provides technical architecture guidance based on industry best practices. You should always consult with a certified auditor or legal professional for official compliance verification.

Which cloud providers does this compliance skill support?

It provides specific implementation patterns for AWS, Microsoft Azure, and Google Cloud Platform (GCP), focusing on native services like KMS, Secrets Manager, and VPCs.

Compliance Architecture Expert

Name: Compliance Architecture Expert
Author: Activer007

byActiver007

0•

Security & Testing

Architects enterprise-grade cloud systems that meet strict regulatory standards including SOC 2, HIPAA, GDPR, and PCI-DSS.

This skill serves as a specialized consultant for designing secure, audit-ready cloud and serverless architectures in highly regulated industries. It provides actionable implementation patterns, security control checklists, and remediation strategies for common vulnerabilities. By guiding developers through complex requirements like IAM least privilege, data residency, encryption standards, and network isolation, it ensures that infrastructure is not only performant but also compliant with major frameworks such as SOC 2 Type II, HIPAA for healthcare, and PCI-DSS for payments.

Key Features

01Hardened architecture patterns for AWS, Azure, and Google Cloud

02Audit preparation workflows and evidence collection strategies

03Detailed encryption-at-rest and in-transit implementation guidance

040 GitHub stars

05Comprehensive checklists for SOC 2, HIPAA, GDPR, and PCI-DSS standards

06Misconfiguration detection for S3 buckets, IAM policies, and databases

Use Cases

01Preparing a SaaS infrastructure for an upcoming SOC 2 Type II audit

02Implementing GDPR-compliant data residency and deletion workflows

03Designing a HIPAA-compliant backend for healthcare data processing

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add activer007/ordinary-claude-skills compliance-architecture

For use in Claude.ai and ChatGPT

Download Skill