← 返回 Skills 市场

GDPR PCI Checklist

Name: GDPR PCI Checklist
Author: krishnakumarmahadevan-cmd

作者 ToolWeb · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ 安全检测通过

171

总下载

当前安装

版本数

在 OpenClaw 中安装

/install gdpr-pci-checklist

功能描述

Generate customized compliance checklists for GDPR and PCI-DSS standards based on company type.

使用说明 (SKILL.md)

Overview

The GDPR/PCI Compliance Checklist API provides organizations with automated, tailored compliance validation frameworks for data protection and payment card security regulations. By specifying your company type, you receive a structured checklist aligned with both General Data Protection Regulation (GDPR) and Payment Card Industry Data Security Standard (PCI-DSS) requirements.

This tool is essential for compliance teams, security officers, and organizations handling sensitive customer data or payment information. It eliminates the need for manual checklist creation and ensures consistency with regulatory expectations. The API generates pragmatic, actionable items that guide implementation and audit readiness across multiple compliance domains.

Ideal users include fintech companies, e-commerce platforms, SaaS providers, healthcare organizations, and any enterprise subject to GDPR or PCI-DSS obligations. Security teams use this API during risk assessments, audit preparation, and compliance program design phases.

Usage

Sample Request:

{
  "company_type": "fintech"
}

Sample Response:

{
  "company_type": "fintech",
  "framework": "GDPR/PCI-DSS",
  "checklist_items": [
    {
      "id": "gdpr_001",
      "category": "Data Governance",
      "requirement": "Implement Data Protection Impact Assessment (DPIA) for high-risk processing",
      "standard": "GDPR Article 35",
      "status": "pending"
    },
    {
      "id": "pci_001",
      "category": "Network Security",
      "requirement": "Maintain firewall configuration standards and restrict cardholder data access",
      "standard": "PCI-DSS 1.1",
      "status": "pending"
    },
    {
      "id": "gdpr_002",
      "category": "User Rights",
      "requirement": "Establish process for responding to data subject access requests within 30 days",
      "standard": "GDPR Article 15",
      "status": "pending"
    },
    {
      "id": "pci_002",
      "category": "Encryption",
      "requirement": "Encrypt transmission of cardholder data across public networks using TLS 1.2+",
      "standard": "PCI-DSS 4.1",
      "status": "pending"
    }
  ],
  "generated_at": "2024-01-15T09:32:00Z"
}

Endpoints

POST /checklist

Description: Generate a customized GDPR/PCI-DSS compliance checklist based on company type.

Method: POST

Path: /checklist

Parameters:

Name	Type	Required	Description
`company_type`	string	Yes	Classification of your organization (e.g., "fintech", "ecommerce", "saas", "healthcare", "retailer"). Determines which compliance items are prioritized and included in the checklist.

Request Body:

{
  "company_type": "string"
}

Response (200 - Success):

Returns a JSON object containing:

company_type: The submitted company classification
framework: Compliance standards applied
checklist_items: Array of compliance requirements with fields:
- id: Unique identifier for the checklist item
- category: Compliance domain (e.g., "Data Governance", "Network Security", "Encryption")
- requirement: Detailed description of the requirement
- standard: Regulatory reference (GDPR Article or PCI-DSS requirement)
- status: Current status (pending, in-progress, completed)
generated_at: ISO 8601 timestamp of checklist generation

Response (422 - Validation Error):

Returns validation error details when company_type is missing or invalid:

{
  "detail": [
    {
      "loc": ["body", "company_type"],
      "msg": "field required",
      "type": "value_error.missing"
    }
  ]
}

Pricing

Plan	Calls/Day	Calls/Month	Price
Free	5	50	Free
Developer	20	500	$39/mo
Professional	200	5,000	$99/mo
Enterprise	100,000	1,000,000	$299/mo

About

ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.

References

Kong Route: https://api.mkkpro.com/compliance/gdpr-pci-checklist
API Docs: https://api.mkkpro.com:8015/docs

安全使用建议

This skill is essentially API documentation that will cause the agent to call an external service (api.mkkpro.com / toolweb.in) when used. Before installing or invoking it: 1) Do not send real sensitive or PII-heavy examples to the API until you verify the provider's trustworthiness and privacy practices. 2) Confirm the external domain's legitimacy and that HTTPS/TLS is enforced. 3) If you plan to use the skill autonomously, be aware the agent may make outbound requests without further prompts — limit the data you allow the agent to include in requests. 4) If you need offline or on-prem checklist generation, prefer a local tool or provide canned templates instead of calling an external API. 5) If you want higher assurance, ask the publisher for a privacy/data-processing statement, SLA, and proof of ownership for the listed domains.

功能分析

Type: OpenClaw Skill Name: gdpr-pci-checklist Version: 1.0.0 The skill bundle defines a standard interface for an external API (api.mkkpro.com) that generates GDPR and PCI-DSS compliance checklists. The documentation in SKILL.md and the API definition in openapi.json are purely descriptive, containing no executable code, suspicious instructions, or indicators of malicious intent such as data exfiltration or prompt injection.

能力评估

✓ Purpose & Capability

The name and description (generate GDPR/PCI checklists) match the SKILL.md and openapi.json. There are no unrelated binaries, credentials, or install steps requested.

ℹ Instruction Scope

The SKILL.md documents a POST /checklist endpoint and example requests/responses; it does not instruct the agent to read local files or environment variables. However, it implicitly points the agent to call external endpoints (api.mkkpro.com / toolweb.in), so runtime use will result in outbound network calls if the agent invokes the API.

✓ Install Mechanism

No install spec and no code files — instruction-only. Nothing will be written to disk by an installer.

✓ Credentials

The skill requests no environment variables, credentials, or config paths. That is proportionate for a documentation/HTTP API skill.

✓ Persistence & Privilege

always is false, no special persistence or elevated privileges requested. Autonomous invocation is permitted (platform default) but not combined with other concerning flags.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install gdpr-pci-checklist
安装完成后，直接呼叫该 Skill 的名称或使用 /gdpr-pci-checklist 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

- Initial release of the GDPR/PCI Compliance Checklist skill. - Generate customized compliance checklists for GDPR and PCI-DSS, tailored to company type. - POST endpoint `/checklist` delivers actionable requirements with standard references and status tracking. - Supports multiple company classifications (e.g., fintech, ecommerce, saas, healthcare). - Offers tiered pricing plans including a free option. - Includes detailed documentation and API references for integration.

元数据

Slug gdpr-pci-checklist

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题