Benjamin_Boenisch/breakpilot-compliance
1
1
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Phase 6 — Integration + QS (categories, scope defaults, examples)

Browse Source 
Phase 6 of the Document Templates Masterplan:

- Categories: Consolidated AI governance into internal_policies,
  removed redundant category
- scopeDefaults.ts: Added getRecommendedDocuments() function that
  maps L1-L4 compliance levels to required/recommended/optional
  document types (~60 types across 4 tiers)
- Examples: Added dpa_de.json, tom_de.json, whistleblower_de.json
  example contexts for the document generator

Document recommendation per level:
- L1 (Startup): 5 required (DSI, Impressum, AGB, Cookie)
- L2 (KMU): +6 recommended (AVV, TOM, VVT, Löschkonzept, etc.)
- L3 (Extended): +16 recommended (Security concepts, policies, HR DSI)
- L4 (Enterprise): +25 recommended (ISMS, BCM, all policies)

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Benjamin Admin
2026-05-01 09:36:48 +02:00
parent 3984f39329
commit 42e02fe72d
5 changed files with 135 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
admin-compliance/app/sdk/document-generator/_constants.ts
+1 -2
View File
@@ -28,11 +28,10 @@ export const CATEGORIES: { key: string; label: string; types: string[] | null }[
{ key: 'social_media', label: 'Social Media DSI', types: ['social_media_dsi'] },
{ key: 'whistleblower', label: 'Whistleblower', types: ['whistleblower_policy'] },
{ key: 'hr_dsi', label: 'HR-Datenschutz', types: ['applicant_dsi', 'employee_dsi'] },
{ key: 'ai_governance', label: 'KI-Governance', types: ['ai_usage_policy'] },
{ key: 'isms', label: 'ISMS', types: ['isms_manual'] },
{ key: 'consent_texts', label: 'Einwilligungen', types: ['consent_texts'] },
{ key: 'special_dsi', label: 'Spezial-DSI', types: ['video_conference_dsi'] },
{ key: 'internal_policies', label: 'Interne Richtlinien', types: ['byod_policy'] },
{ key: 'internal_policies', label: 'Interne Richtlinien', types: ['byod_policy', 'ai_usage_policy'] },
{ key: 'module_docs', label: 'Konzepte', types: ['vvt_register', 'loeschkonzept', 'pflichtenregister', 'it_security_concept', 'data_protection_concept', 'backup_recovery_concept', 'logging_concept', 'incident_response_plan', 'access_control_concept', 'risk_management_concept'] },
{ key: 'security_policies', label: 'Sicherheitsrichtlinien', types: ['information_security_policy', 'access_control_policy', 'password_policy', 'encryption_policy', 'cybersecurity_policy'] },
{ key: 'hr_policies', label: 'HR-Richtlinien', types: ['employee_security_policy', 'security_awareness_policy', 'remote_work_policy', 'offboarding_policy'] },