breakpilot-compliance

Benjamin_Boenisch/breakpilot-compliance

Fork 0

Commit Graph

Author	SHA1	Message	Date
Benjamin Admin	d942b21354	feat: SCC + TIA templates for third-country transfers New templates for the Vendor Compliance module: - 105: Transfer Impact Assessment (TIA) — Schrems II risk assessment with country evaluation, government access assessment, supplementary measures, risk matrix, and go/conditional/deny decision - 105: SCC Companion Document — annexes to EU Decision 2021/914 (module selection C2C/C2P/P2P/P2C, party details, data description, TOMs, sub-processor list) Template recommendations: SCC+TIA triggered by tech_third_country answer Generator: New "Drittlandtransfer" category Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-05-01 10:19:56 +02:00
Benjamin Admin	4ff6050f43	feat: Template recommendation engine — bridges scope to document generator Fixes critical gap: 50+ templates were unreachable because the Compliance Scope Engine only outputs 23 document types, while the database has 70+. New: templateRecommendations.ts - 25 template rules that map scope answers to specific templates - Covers ALL previously orphaned templates (HR-DSI, whistleblower, AI policy, BYOD, security policies, community guidelines, etc.) - Each rule evaluates scope answers + compliance level to determine required/recommended/optional status - Key triggers: - employee_count > 0 → employee_dsi, applicant_dsi - employee_count >= 50 → whistleblower_policy (HinSchG Pflicht!) - ai_usage != none → ai_usage_policy - business_model = platform → community_guidelines, terms_of_use - cert_target = iso27001 → isms_manual - webshop = yes → widerruf Updated: scopeDefaults.ts - getRecommendedDocuments() expanded with all 60+ document types - L1→L4 graduated recommendation (required/recommended/optional) Updated: _constants.ts - Consolidated AI governance into internal_policies category Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-05-01 10:12:15 +02:00

Author

SHA1

Message

Date

Benjamin Admin

d942b21354

feat: SCC + TIA templates for third-country transfers

New templates for the Vendor Compliance module:
- 105: Transfer Impact Assessment (TIA) — Schrems II risk assessment
  with country evaluation, government access assessment, supplementary
  measures, risk matrix, and go/conditional/deny decision
- 105: SCC Companion Document — annexes to EU Decision 2021/914
  (module selection C2C/C2P/P2P/P2C, party details, data description,
  TOMs, sub-processor list)

Template recommendations: SCC+TIA triggered by tech_third_country answer
Generator: New "Drittlandtransfer" category

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-05-01 10:19:56 +02:00

Benjamin Admin

4ff6050f43

feat: Template recommendation engine — bridges scope to document generator

Fixes critical gap: 50+ templates were unreachable because the Compliance
Scope Engine only outputs 23 document types, while the database has 70+.

New: templateRecommendations.ts
- 25 template rules that map scope answers to specific templates
- Covers ALL previously orphaned templates (HR-DSI, whistleblower,
  AI policy, BYOD, security policies, community guidelines, etc.)
- Each rule evaluates scope answers + compliance level to determine
  required/recommended/optional status
- Key triggers:
  - employee_count > 0 → employee_dsi, applicant_dsi
  - employee_count >= 50 → whistleblower_policy (HinSchG Pflicht!)
  - ai_usage != none → ai_usage_policy
  - business_model = platform → community_guidelines, terms_of_use
  - cert_target = iso27001 → isms_manual
  - webshop = yes → widerruf

Updated: scopeDefaults.ts
- getRecommendedDocuments() expanded with all 60+ document types
- L1→L4 graduated recommendation (required/recommended/optional)

Updated: _constants.ts
- Consolidated AI governance into internal_policies category

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-05-01 10:12:15 +02:00

2 Commits