dpia-risk-scoring

Installation
SKILL.md

DPIA Risk Scoring Methodology

Overview

Art. 35(7)(c) GDPR requires a DPIA to include "an assessment of the risks to the rights and freedoms of data subjects." This skill provides a quantifiable risk scoring framework that converts qualitative privacy risks into comparable, prioritised scores supporting mitigation decisions.

Risk Scoring Framework

Severity Scale (Impact on Data Subject Rights)

Level Score Description Examples
Negligible 1 Minor inconvenience, easily recoverable Temporary inability to access non-essential service
Limited 2 Significant inconvenience, recoverable with effort Targeted advertising based on inferred preferences
Significant 3 Serious consequences, difficult to recover from Financial loss, discrimination, reputational harm
Maximum 4 Irreversible or very difficult to recover from Identity theft, physical safety risk, loss of employment

Likelihood Scale

Installs
9
GitHub Stars
187
First Seen
Jun 9, 2026
dpia-risk-scoring — mukul975/privacy-data-protection-skills