Advanced
GDPR data processing inventory: systems, data types, legal bases
Creates a GDPR processing inventory and maps data types to purposes, legal bases, and retention. Useful for privacy compliance and audit readiness.
Create a GDPR data processing inventory for {organization_name}.
Inputs:
- Systems/applications list: {systems_list}
- Personal data types collected: {data_types}
- Processing purposes: {purposes}
- Legal bases (if known): {legal_bases}
- Data sharing/third parties: {third_parties}
- Retention policies: {retention_policies}
Output:
1) Inventory table: system, data types, purpose, legal basis, recipients, retention, security controls, owner.
2) Gaps and risks (missing legal basis, retention unclear, third-party contracts).
3) Action plan to remediate.
4) Documentation suggestions (RoPA, DPAs, DPIAs where needed).
This is not legal advice; coordinate with privacy counsel.Related Prompts
Compliance & Regulatory
Advanced10-Q MD&A draft from variance drivers (management-ready)
Drafts an MD&A section based on provided financial changes and drivers, with structured language and risk-aware tone. Useful for SEC reporting teams accelerating first drafts.
GPT-5.2 Thinking; GPT-4.1; o3-mini
0
0
2
Compliance & Regulatory
Intermediate10-K footnote checklist mapped to owners and source systems
Creates a 10-K footnote checklist with owners, data sources, and validation checks. Useful for planning the annual reporting process and avoiding last-minute gaps.
GPT-5.2 Thinking; GPT-4.1; o3-mini
0
0
2
Compliance & Regulatory
IntermediateSOX risk-control matrix (RCM) generator for a process
Creates a SOX RCM with risks, controls, evidence, and testing attributes. Useful for building or refreshing SOX documentation efficiently.
GPT-5.2 Thinking; GPT-4.1; o3-mini
0
0
2