dsgvo-check

star 0

Audit the project for DSGVO (German data protection) compliance

Z5US By Z5US schedule Updated 3/8/2026
play_arrow Run Skill in Manus View GitHub

name: dsgvo-check description: Audit the project for DSGVO (German data protection) compliance autoTrigger: When asked to check compliance or before deployment

DSGVO Compliance Check

Run through this checklist:

Fonts

  • Search for any fonts.googleapis.com or fonts.gstatic.com references
  • All fonts must be self-hosted via next/font
  • Run: grep -r "fonts.googleapis.com\|fonts.gstatic.com" apps/web/
  • Expected: zero results

Cookie Consent

  • Verify CookieConsentProvider wraps the app in root layout
  • Verify "Alle ablehnen" button is equally visible as "Alle akzeptieren"
  • No non-essential scripts before consent
  • Check for unconsented tracking: grep -rn "gtag\|google-analytics\|googletagmanager" apps/web/

Legal Pages

  • /impressum exists and references § 5 DDG
  • /datenschutz exists with complete privacy policy
  • Both are linked from the Footer
  • Both are accessible within 2 clicks from any page

Firebase

  • Firestore region: europe-west3 (Frankfurt)
  • Cloud Functions region: europe-west3
  • Document Firebase Auth US transfer in Datenschutzerklärung

Vercel

  • Function region: fra1 (verify in vercel.json or next.config.ts)
  • DPA accepted at vercel.com/legal/dpa

Forms

  • Contact form has explicit consent checkbox (unchecked by default)
  • Consent text links to Datenschutzerklärung
  • Form submissions logged with consent version and timestamp
  • Newsletter uses Double Opt-In (DOI)

Analytics

  • If using Plausible/Umami: verify no cookies used
  • If using Google Analytics: verify consent gate
Install via CLI
npx skills add https://github.com/Z5US/nextjs-studio-starter --skill dsgvo-check
Repository Details
star Stars 0
call_split Forks 0
navigation Branch main
article Path SKILL.md
More from Creator
Z5US
Z5US Explore all skills →