II.
Workflow JSON
Structured · liveworkflow:compliance-audit
Compliance Audit json
Inspect the normalized record payload exactly as the atlas UI reads it.
{
"id": "workflow:compliance-audit",
"_kind": "Workflow",
"_file": "domain/workflows/workflows-governance.yaml",
"_cluster": "domain",
"attributes": {
"displayName": "Compliance Audit",
"description": "Annual cross-team workflow that evaluates the organisation's adherence to regulatory\nrequirements, contractual obligations, and internal policy standards (e.g. GDPR, HIPAA,\nPCI-DSS, SOC 2). The compliance officer coordinates with legal, security, engineering,\nand finance teams to gather evidence across controls. An internal pre-audit assesses\nreadiness before engaging external auditors. Findings and non-conformances are tracked\nin a remediation register with owners and deadlines. After remediation, evidence is\nre-submitted, and the final audit report is issued. Board and leadership are briefed on\naudit outcomes, and the compliance programme is updated to reflect new requirements.\n",
"workflowKind": "governance",
"triggerType": "scheduled",
"typicalCadence": "annual",
"complexity": "complex"
},
"outgoingEdges": [
{
"from": "workflow:compliance-audit",
"to": "role:compliance-officer",
"kind": "involves_role"
},
{
"from": "workflow:compliance-audit",
"to": "role:legal-counsel",
"kind": "involves_role"
},
{
"from": "workflow:compliance-audit",
"to": "role:audit-analyst",
"kind": "involves_role"
},
{
"from": "workflow:compliance-audit",
"to": "role:security-engineer",
"kind": "involves_role"
},
{
"from": "workflow:compliance-audit",
"to": "role:vp-engineering",
"kind": "involves_role"
},
{
"from": "workflow:compliance-audit",
"to": "role:privacy-engineer",
"kind": "involves_role"
},
{
"from": "workflow:compliance-audit",
"to": "domain:cybersecurity",
"kind": "applies_to_domain"
},
{
"from": "workflow:compliance-audit",
"to": "domain:infrastructure",
"kind": "applies_to_domain"
},
{
"from": "workflow:compliance-audit",
"to": "responsibility:compliance-monitoring",
"kind": "triggers_responsibility"
},
{
"from": "workflow:compliance-audit",
"to": "responsibility:risk-assessment",
"kind": "triggers_responsibility"
},
{
"from": "workflow:compliance-audit",
"to": "responsibility:documentation",
"kind": "triggers_responsibility"
},
{
"from": "workflow:compliance-audit",
"to": "responsibility:stakeholder-communication",
"kind": "triggers_responsibility"
}
],
"incomingEdges": [
{
"from": "stack-profile:compliance-audit-trail",
"to": "workflow:compliance-audit",
"kind": "follows_workflow"
},
{
"from": "lib-agent:legal--corporate-counsel",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-agent:legal--corporate-secretary",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-agent:security-compliance--risk-scoring-agent",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-agent:security-compliance--security-requirements-agent",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--adr-procedures",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--board-governance-framework",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--compliance-monitoring-testing",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--compliance-program-development",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--compliance-risk-assessment",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--compliance-training-program",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--contract-drafting-automation",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--contract-lifecycle-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--contract-negotiation-playbook",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--contract-obligation-tracking",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--contract-review-analysis",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--corporate-policy-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--corporate-records-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--data-breach-response",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--data-mapping-inventory",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--data-subject-rights-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--ediscovery-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--entity-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--gdpr-compliance-program",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--ip-licensing-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--ip-portfolio-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--legal-hold-implementation",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--litigation-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--patent-filing-prosecution",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--privacy-impact-assessment",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--regulatory-change-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--trade-secret-protection",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-process:legal--trademark-registration-protection",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-skill:legal--board-governance",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-skill:legal--corporate-records",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-skill:legal--entity-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-skill:legal--policy-management",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-skill:security-compliance--compliance-evidence-collector",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-skill:security-compliance--gdpr-compliance-automator",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-skill:security-compliance--hipaa-compliance-automator",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-skill:security-compliance--multi-cloud-security-posture",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 0.7
}
},
{
"from": "lib-skill:security-compliance--pci-dss-compliance-automator",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-skill:security-compliance--soc2-compliance-automator",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-skill:security-compliance--vendor-risk-monitor",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-skill:security-compliance--vendor-security-questionnaire",
"to": "workflow:compliance-audit",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
}
]
}