Nex Gdpr
by @nexaiguy
GDPR and AVG (Belgian data protection law) compliance handler for agency operators, data controllers, and organizations managing data subject requests. Regis...
clawhub install nex-gdprπ About This Skill
name: nex-gdpr description: GDPR and AVG (Belgian data protection law) compliance handler for agency operators, data controllers, and organizations managing data subject requests. Register and manage all types of data subject requests (inzageverzoek, verwijderverzoek, recht op gegevensoverdracht) as required under GDPR Articles 15-21 and Belgian AVG regulations. Automatically scan and discover personal data across OpenClaw sessions, agent memory, application logs, and skill databases. Process Right of Access requests by compiling complete personal data exports in machine-readable formats. Handle Right of Erasure requests with secure 3-pass file deletion and audit logging. Support Right to Data Portability with JSON format exports. Generate compliant response letters in both Dutch (AVG) and English (GDPR) with formal documentation. Track 30-day legal response deadlines with extension options for complex requests. Maintain immutable audit trails of every action taken on data subject requests for regulatory compliance and dispute resolution. Manage data retention policies and auto-cleanup schedules. Perfect for Belgian agencies, service providers, and organizations operating under GDPR/AVG who need systematic compliance processes. version: 1.0.0 metadata: clawdbot: emoji: "π‘" requires: bins: - python3 env: - OPENCLAW_SESSIONS - NEX_GDPR_SCAN_PATHS primaryEnv: "" homepage: https://nex-ai.be files: - "nex-gdpr.py" - "lib/*" - "setup.sh"
Nex GDPR
GDPR Data Request Handler for agency operators running OpenClaw for clients. Automate compliance with data subject rights (Articles 15-21 of GDPR/AVG). Register requests, scan for personal data, process erasure/access/portability, generate response letters, and maintain audit trails.
When to Use
Use this skill when you need to:
Trigger phrases: "GDPR request", "data subject request", "inzageverzoek", "verwijderverzoek", "right to access", "right to erasure", "data portability", "personal data", "PII", "AVG", "persoonsgegevens", "erasure request", "portability request", "how many GDPR requests", "overdue requests", "audit trail", "compliance documentation"
Example use cases:
Quick Setup
If the database does not exist yet, run the setup script:
bash setup.sh
This creates the data directory, installs dependencies, and initializes the database.
Available Commands
Request Management
Register a new request:
nex-gdpr new --type access --name "Jan Peeters" --email "jan@example.be" --id "user_jan_123"
Request types: ACCESS, ERASURE, PORTABILITY, RECTIFICATION, RESTRICTION, OBJECTION
List all requests:
nex-gdpr list
nex-gdpr list --status VERIFIED
nex-gdpr list --type ERASURE
Show request details:
nex-gdpr show 42
Shows request status, deadline, findings, and audit trail.
Data Discovery & Scanning
Scan for user data:
nex-gdpr scan "jan@example.be"
nex-gdpr scan --request 42
Scans OpenClaw sessions, agent memory, logs, and databases for personal data.
Show findings for a request:
nex-gdpr findings 42
Request Processing
Process a request:
nex-gdpr process 42
Automatically:
Verify request identity:
nex-gdpr verify 42 --method "email confirmation"
Deny a request:
nex-gdpr deny 42 --reason "Identity could not be verified"
Complete a request:
nex-gdpr complete 42
Compliance & Monitoring
Show overdue requests:
nex-gdpr overdue
Highlights requests past the 30-day GDPR response deadline.
Generate response letter:
nex-gdpr letter 42
Outputs formal response letter in Dutch and English (Article 15-21 compliant).
Export compliance report:
nex-gdpr export 42
Exports complete request report (JSON) with findings and audit trail.
Show audit trail:
nex-gdpr audit 42
Displays all actions taken on the request (verification, processing, approvals).
Show GDPR statistics:
nex-gdpr stats
Displays request counts by status/type, overdue requests, PII findings, and data volumes.
Data Retention
Show retention policies:
nex-gdpr retention show
Set retention policy:
nex-gdpr retention set --type sessions --days 180 --auto-delete
Run cleanup:
nex-gdpr cleanup --dry-run
nex-gdpr cleanup --execute
Architecture
Storage
~/.nex-gdpr/gdpr.dbrequests, data_findings, audit_trail, retention_policiesData Scanning
.openclaw/sessions and .claw/sessions.nex-memory directory.nex-logs for user referencesRequest Processing
Compliance
Data Locations Scanned
The scanner searches the following locations for personal data:
~/.openclaw/sessions - OpenClaw session files~/.claw/sessions - Alternative Claw sessions~/.nex-memory - Agent memory files~/.nex-logs - Application logs~/.nex-uploads - Uploaded filesConfigurable via environment variables:
export OPENCLAW_SESSIONS="/custom/sessions/path"
export NEX_GDPR_SCAN_PATHS="/path1:/path2:/path3"
GDPR Articles Supported
Privacy & Security
~/.nex-gdpr/exports/Configuration
Configuration is stored in lib/config.py:
DATA_DIR: ~/.nex-gdpr (customizable)RESPONSE_DEADLINE_DAYS: 30 (GDPR requirement)EXTENSION_DAYS: 60 (for complex requests)DEFAULT_RETENTION_DAYS: 365 (1 year default)Exit Codes
0: Success1: Error or validation failureNotes
Support
For issues or questions:
β‘ When to Use
βοΈ Configuration
Configuration is stored in lib/config.py:
DATA_DIR: ~/.nex-gdpr (customizable)RESPONSE_DEADLINE_DAYS: 30 (GDPR requirement)EXTENSION_DAYS: 60 (for complex requests)DEFAULT_RETENTION_DAYS: 365 (1 year default)