ropa-dpia-linkage
Installation
SKILL.md
RoPA-DPIA Linkage
Overview
GDPR Article 35 requires a Data Protection Impact Assessment for processing likely to result in a high risk to data subjects' rights and freedoms. Article 30 requires records of all processing activities. These two obligations are interdependent: every DPIA should map to one or more RoPA entries, and every RoPA entry flagged as high-risk should reference a DPIA. This skill establishes the cross-reference system, dependency tracking mechanisms, and update cascade triggers that ensure consistency between RoPA, the DPIA register, and lawful basis assessments.