GDPR Compliance Gap Analysis for US E-commerce Selling to EU Customers
Produces a tiered GDPR gap analysis (immediate / 90-day / ongoing) for a US e-commerce client selling to EU customers, with the GDPR article and fine range for each item.
The Prompt
This prompt is part of the professional tier
Get instant access to the full prompt — plus 0 guided input fields, anti-hallucination checks, and the Prompt Runner.
Preview prompt structure
"You are a data protection attorney specializing in GDPR compliance. Our client is a US-based e-commerce company that sells to EU customers and processes personal data including names, email addresses, purchase history, and payment information. The company currently has a privacy policy but no Data ...
Expected Output
A three-tier GDPR compliance gap analysis (immediate, 90-day, ongoing) with each item mapped to a specific GDPR article and fine range.
Usage Notes
Adapt the fact pattern to match your client's actual data flows, vendor relationships, and existing program. Verify the GDPR article cites against the official text — anti-hallucination instructions help but are not foolproof for regulatory references.
Originally featured in: Prompt Engineering for Lawyers: The Complete 2026 Guide
Related Prompts
ChatGPT Prompt: Post-Consultation Follow-Up Email to Prospects
A polished 250-350 word post-consultation email that thanks the prospect, summarizes issues, and presents next steps and fees.
ChatGPT Prompt: Tone-Aware Case Status Update Email to Client
Send a clear, well-calibrated case status email — tone, depth, and urgency tuned to your specific client and matter posture.
ChatGPT Prompt: Deliver Difficult News to a Client by Letter
Deliver bad news to a client without sounding defensive — clear narrative, options, recommendation, and an offer to discuss live.
Gemini Prompt: Draft an Internal IRAC Legal Memorandum
Draft a partner-ready internal legal memo using IRAC — facts, issue, rule, application, and a confidence-rated conclusion with recommended next steps.