Technology Decision Support
Compliance Check
Compliance Check gives teams a structured way to review whether a technology decision may create regulatory or policy obligations. It frames the likely controls, unresolved questions, and practical recommendation so compliance concerns are surfaced early. This skill is useful for product leaders, security teams, operators, and consultants who need an initial compliance lens before moving forward. It is not legal advice, but it is an effective operational review tool for identifying where further validation is needed. Its production-grade value is organization. The output separates obligations, controls, unknowns, and recommendations so the review can feed governance, procurement, or implementation planning instead of remaining a vague caution flag.
One-Time Purchase
$19.99
Compliance Screening Report
Decision under review: Adopting Snowflake as primary data warehouse, storing customer PII and behavioral analytics Data types: PII (names, emails, IP addresses), behavioral data (clickstreams, session recordings) Jurisdictions: US (all states), EU (GDPR), Canada (PIPEDA) Assessment date: 2026-03-18
Applicable Frameworks
| Framework | Applicability | Confidence | |-----------|--------------|------------| | GDPR | Direct — EU customer data stored | High | | CCPA/CPRA | Direct — California resident data processed | High | | PIPEDA | Direct — Canadian customer PII | High | | SOC 2 Type II | Required — Snowflake holds current certification | High | | HIPAA | Not applicable — no PHI in scope | High |
Obligations Triggered
GDPR
- Article 28 DPA required before storing EU personal data in Snowflake
- Article 44-49: Snowflake's US regions require Standard Contractual Clauses or approved transfer mechanism
- Article 17: Right to erasure must be implementable — confirm Snowflake supports row-level deletion
CCPA/CPRA
- Service provider agreement required under CCPA §1798.140(ag)
- Must support consumer deletion requests within 45 days
Required Controls
- [ ] Data Processing Agreement — Execute Snowflake DPA before go-live (GDPR Art. 28)
- [ ] Data residency configuration — Enable EU-region storage for EU customer data (GDPR Art. 44)
- [ ] Row-level deletion capability — Verify and test right-to-erasure workflow (GDPR Art. 17)
- [ ] Encryption at rest — Confirm AES-256 enabled by default (SOC 2)
Risk Summary
Overall risk level: Medium Rationale: Snowflake is a mature, compliant platform, but cross-border data transfer and row-level deletion require explicit configuration. No hard blockers identified. Hard blockers: None — contingent on DPA execution before go-live
View full sample →
All sales final. No refunds on digital products.
Includes support for Claude Code, Codex, and OpenClaw in the same license.
What You Get With This Skill
Reviews a technology decision for regulatory and policy implications, then outlines obligations, controls, and open questions. Useful for early compliance screening.
All ClearPoint Nexus Skills Include
- Production-ready workflow packaging for three supported platforms.
- Reusable structure designed for repeatable operator tasks.
- Clear deliverable format, not just raw prompt output.
Related Skills
$19.99
One-time license
$19.99
One-time license
$19.99
One-time license