GDPR Compliance Skill Purpose Ensures compliance with EU General Data Protection Regulation (GDPR) for systems that process personal data. Rules Privacy by Design (Article 25) MUST: - Implement data minimization (collect only necessary data) - Use pseudonymization where possible - Encrypt personal data at rest and in transit - Implement access controls - Enable data portability - Design for right to erasure Lawful Basis for Processing MUST HAVE one of: - Consent (freely given, specific, informed, unambiguous) - Contract (necessary for contract performance) - Legal obligation - Vital interests…