Skill Packages

Browse ready-made AI workflow skills for document elaboration, review, and structuring.

ISO 27701 PIMS Internal Audit

Plan and document a PIMS-specific internal audit. Covers audit planning, execution checklist, findings, nonconformities, and corrective actions focused on privacy controls and PII processing compliance.

    Learn More
    ISO 27701 PIMS Scope Definition

    Define the Privacy Information Management System (PIMS) scope per ISO/IEC 27701:2019+AMD1:2024 Clauses 5.2.1–5.2.4 — organization role as PII controller, processor, or both (5.2.1); interested parties and their privacy needs (5.2.2); PII principal categories, applicable regulations (GDPR, LGPD, CCPA/CPRA, PIPEDA, PDPA, APPI, POPIA, PIPL), PIMS boundaries, cross-border transfers, privacy objectives, and exclusions (5.2.3); and ISMS linkage (5.2.4). Foundation skill for all ISO 27701 documentation.

      Learn More
      ISO 27701 PIMS Statement of Applicability

      Create the PIMS Statement of Applicability covering both Annex A (controller) and Annex B (processor) controls. Maps each control to In/Out with justification, implementation status, and evidence — the PIMS-specific equivalent of the ISO 27001 SoA.

        Learn More
        ISO 27701 Privacy Policy Generator

        Generate a comprehensive privacy policy/notice aligned to ISO 27701 Clause 6 controller obligations. Uses PII inventory and controller controls as inputs to produce a legally-grounded, auditable privacy policy covering all 15 mandatory topics, plus a condensed privacy notice for user-facing communication.

          Learn More
          ISO 27701 Privacy Risk Assessment

          Conduct a privacy-specific risk assessment focusing on risks to PII principals per ISO 27701 Clause 5.4 (2019) / Clause 6.6 (2025). Defines all 8 individual-focused privacy impact criteria (physical harm, financial loss, discrimination, reputational damage, emotional distress, loss of autonomy, identity theft, social disadvantage — not organizational CIA-triad categories), identifies privacy threats per processing activity and PII principal category, scores risks on a 5x5 privacy impact matrix, assesses DPIA triggers per GDPR Art. 35 / EDPB WP248 rev.01, and plans treatment using privacy-specific options (minimize, pseudonymize, anonymize, consent, purpose limitation, encryption, deletion).

            Learn More
            ISO 27701 Processor Controls (Annex B)

            Implement and document ISO 27701 Clause 8 and Annex B controls specific to PII processors. Covers conditions for processing, obligations to PII principals, privacy by design/default, sub-processor management, and PII sharing/transfer/disclosure with implementation status, evidence, and justification for exclusions.

              Learn More
              ISO 27701 Security Controls Overlay

              Create the privacy overlay for the 93 ISO 27002:2022 security controls. For each control in the SoA, document what additional privacy-specific implementation is needed per ISO 27701 Clause 6. Covers all four control themes (Organizational, People, Physical, Technological) with privacy augmentation guidance and evidence mapping.

                Learn More
                ISO 42001 AI Impact Assessment

                Draft AI impact assessments (AI system impact assessment) for ISO/IEC 42001:2023 and related frameworks.

                  Learn More
                  ISO 42001 AI Lifecycle Procedures

                  Draft AI lifecycle management procedures for ISO/IEC 42001:2023 (concept to retirement).

                    Learn More
                    ISO 42001 AI Policy

                    Draft and validate the formal AI Policy for ISO/IEC 42001:2023, covering all mandatory Clause 5.2 elements: organizational purpose alignment, compliance commitment, continual improvement, risk management, transparency, data governance, and ethical use including human rights.

                      Learn More
                      ISO 42001 AI Risk Assessment Methodology

                      Draft the AI risk assessment methodology for ISO/IEC 42001:2023.

                        Learn More
                        ISO 42001 AI Risk Register

                        Draft and validate the AI risk register for ISO/IEC 42001:2023 with ownership, treatment, and residual risk.

                          Learn More

                          Ready to let your expertise drive the workflow?

                          Stop wrestling with rigid templates and generic chatbots. Describe your process, let the agent handle the rest.

                          Get Started Free — No Sign-Up