← Back to Skills Marketplace
942
Downloads
2
Stars
3
Active Installs
10
Versions
Install in OpenClaw
/install compliance-officer
Description
Reviews marketing content against FTC, HIPAA, GDPR, SEC 482, SEC Marketing, CCPA, COPPA, and CAN-SPAM — 208 specific laws with URLs.
README (SKILL.md)
Compliance Officer
Check marketing content against 208 regulations across FTC, HIPAA, GDPR, SEC, CCPA, COPPA, and CAN-SPAM. Cites actual laws with source URLs.
What You Can Do
- Review marketing content — paste copy, a URL, or an image
- Check emails — evaluate subject lines, bodies, and footers for CAN-SPAM and more
- Audit privacy policies — check for required disclosures across GDPR, CCPA, HIPAA, COPPA
- Explain any rule — look up a rule by ID and get a plain-English breakdown
- Draft disclosures — generate compliant disclosure language for your content
Examples
Review a landing page:
Review this for compliance: "Lose 30 lbs in 2 weeks — GUARANTEED.
Clinically proven. Doctor recommended. Only 3 left in stock!"
Check an email:
Check this email for CAN-SPAM compliance: Subject: "URGENT: Act now!"
From: [email protected] Body: "Click to claim your FREE gift..."
Audit a privacy policy:
Review our privacy policy for GDPR and CCPA compliance: https://example.com/privacy
Look up a rule:
Explain rule FTC-255-5-material-connection
Draft disclosures:
Draft disclosure language for this influencer post: "Love this protein powder!
Use code SARAH20 for 20% off"
Frameworks Covered
| Framework | Rules | Scope |
|---|---|---|
| FTC | 95 | Endorsements, claims, dark patterns, pricing |
| GDPR | 25 | Consent, disclosure, data rights, cookies |
| SEC Marketing | 18 | Investment adviser marketing |
| HIPAA | 17 | Health data, PHI, notice requirements |
| SEC 482 | 15 | Investment company advertising |
| CAN-SPAM | 14 | Email marketing, opt-out, sender ID |
| CCPA | 12 | California privacy, opt-out rights |
| COPPA | 12 | Children's privacy, parental consent |
Install
npx clawhub install compliance-officer
Source
Apache-2.0 — github.com/QCME-AI/agentic-compliance-rules
For agent instructions, see references/instructions.md.
Usage Guidance
This skill appears coherent and limited to compliance review using the bundled rule files and optional URL fetching. Before installing: (1) confirm you are comfortable granting network access (the skill may fetch user-supplied URLs); (2) avoid pasting sensitive personal health information (PHI) or other secrets into the tool unless you have appropriate agreements in place — HIPAA-related checks may process content you submit; (3) verify the claimed source repository (the SKILL.md points to github.com/QCME-AI/agentic-compliance-rules) if provenance matters to you; and (4) treat outputs as pre-review guidance only — have your legal/compliance team review final decisions.
Capability Analysis
Type: OpenClaw Skill
Name: compliance-officer
Version: 1.1.0
The OpenClaw skill 'compliance-officer' is designed to review marketing content against various regulations. All files, including the agent instructions in `references/instructions.md`, align with this stated purpose. The skill requests 'network' permission, which is justified for fetching content from URLs for review. Crucially, the agent instructions explicitly state that `detection.patterns` within the rule files are 'hints about scope, not matching instructions' and 'not regex patterns to execute,' mitigating potential prompt injection risks from regex patterns. There is no evidence of intentional harmful behavior, data exfiltration, or unauthorized actions.
Capability Assessment
Purpose & Capability
The name/description (marketing/compliance review) match the shipped assets: structured rule files for FTC, HIPAA, GDPR, SEC, CCPA, COPPA, and CAN-SPAM and an instructions document describing how to use them. No unrelated binaries, credentials, or config paths are requested. The claw.json network permission aligns with the SKILL.md note that URL fetching may be needed.
Instruction Scope
Runtime instructions confine the agent to loading local rule JSON files, reasoning about them, and optionally fetching a user-provided URL (privacy policy pages). The instructions do not ask the agent to read system files, access credentials, or post content to arbitrary endpoints. One minor note: the skill accepts images but does not specify OCR steps — that is likely intended to rely on the host agent's vision capabilities rather than adding new disk/exec behavior.
Install Mechanism
There is no install spec and no code files to install or execute; this is instruction-only with bundled reference data. This is the lowest-risk install profile.
Credentials
The skill requests no environment variables, no keys, and no config paths. The only declared permission is network (to fetch user-supplied URLs), which is proportional to the feature set.
Persistence & Privilege
The skill is not force-included (always:false), makes no claims about modifying other skills or system settings, and does not request elevated or persistent privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install compliance-officer - After installation, invoke the skill by name or use
/compliance-officer - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
- Updated claw.json configuration file.
- No user-facing feature or documentation changes.
v1.0.8
- Separated FTC compliance rules into individual files for claims, dark patterns, and endorsements.
- Removed the combined FTC rules file to improve organization and modularity.
- Updated instructions and references to reflect new rule file structure.
v1.0.7
Shorten description to avoid truncation
v1.0.6
Cite specific regulations (FTC, HIPAA, GDPR, etc.) in description
v1.0.5
Clean landing page — moved agent instructions to references
v1.0.4
Clean up SKILL.md for ClawHub display — move detailed instructions to references/
v1.0.3
Show README on ClawHub page instead of SKILL.md
v1.0.2
Add usage examples to README
v1.0.1
Clean up README
v1.0.0
Initial release: 208 regulatory rules across 8 frameworks (FTC, HIPAA, GDPR, SEC 482, SEC Marketing, CCPA, COPPA, CAN-SPAM)
Metadata
Frequently Asked Questions
What is Compliance Officer?
Reviews marketing content against FTC, HIPAA, GDPR, SEC 482, SEC Marketing, CCPA, COPPA, and CAN-SPAM — 208 specific laws with URLs. It is an AI Agent Skill for Claude Code / OpenClaw, with 942 downloads so far.
How do I install Compliance Officer?
Run "/install compliance-officer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Compliance Officer free?
Yes, Compliance Officer is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Compliance Officer support?
Compliance Officer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Compliance Officer?
It is built and maintained by Arber X (@arberx); the current version is v1.1.0.
More Skills