Classification Framework Enforcement Skill

Purpose

This skill provides guidance for enforcing data classification across the Citizen Intelligence Agency platform. It defines classification levels, sensitivity labeling requirements, and mandatory handling controls for each level to ensure consistent data protection aligned with ISMS requirements.

When to Use This Skill

Apply this skill when:

• ✅ Designing new data models or database tables
• ✅ Implementing features that process or display data
• ✅ Reviewing code that handles user data or PII
• ✅ Configuring logging, caching, or data export
• ✅ Assessing data flows between system components
• ✅ Integrating with external data sources
• ✅ Conducting data protection impact assessments

Do NOT use for:

• ❌ Access control implementation (use access-control-policy)