@ansvar/eu-regulations-mcp 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (58) hide show
  1. package/LICENSE +21 -0
  2. package/README.md +242 -0
  3. package/data/seed/ai-act.json +1026 -0
  4. package/data/seed/applicability/dora.json +92 -0
  5. package/data/seed/applicability/gdpr.json +74 -0
  6. package/data/seed/applicability/nis2.json +83 -0
  7. package/data/seed/cra.json +690 -0
  8. package/data/seed/cybersecurity-act.json +534 -0
  9. package/data/seed/dora.json +719 -0
  10. package/data/seed/gdpr.json +732 -0
  11. package/data/seed/mappings/iso27001-dora.json +106 -0
  12. package/data/seed/mappings/iso27001-gdpr.json +114 -0
  13. package/data/seed/mappings/iso27001-nis2.json +98 -0
  14. package/data/seed/nis2.json +492 -0
  15. package/dist/index.d.ts +3 -0
  16. package/dist/index.d.ts.map +1 -0
  17. package/dist/index.js +271 -0
  18. package/dist/index.js.map +1 -0
  19. package/dist/tools/applicability.d.ts +20 -0
  20. package/dist/tools/applicability.d.ts.map +1 -0
  21. package/dist/tools/applicability.js +42 -0
  22. package/dist/tools/applicability.js.map +1 -0
  23. package/dist/tools/article.d.ts +17 -0
  24. package/dist/tools/article.d.ts.map +1 -0
  25. package/dist/tools/article.js +29 -0
  26. package/dist/tools/article.js.map +1 -0
  27. package/dist/tools/compare.d.ts +18 -0
  28. package/dist/tools/compare.d.ts.map +1 -0
  29. package/dist/tools/compare.js +60 -0
  30. package/dist/tools/compare.js.map +1 -0
  31. package/dist/tools/definitions.d.ts +14 -0
  32. package/dist/tools/definitions.d.ts.map +1 -0
  33. package/dist/tools/definitions.js +26 -0
  34. package/dist/tools/definitions.js.map +1 -0
  35. package/dist/tools/list.d.ts +22 -0
  36. package/dist/tools/list.d.ts.map +1 -0
  37. package/dist/tools/list.js +67 -0
  38. package/dist/tools/list.js.map +1 -0
  39. package/dist/tools/map.d.ts +19 -0
  40. package/dist/tools/map.d.ts.map +1 -0
  41. package/dist/tools/map.js +44 -0
  42. package/dist/tools/map.js.map +1 -0
  43. package/dist/tools/search.d.ts +15 -0
  44. package/dist/tools/search.d.ts.map +1 -0
  45. package/dist/tools/search.js +62 -0
  46. package/dist/tools/search.js.map +1 -0
  47. package/package.json +70 -0
  48. package/scripts/build-db.ts +292 -0
  49. package/scripts/check-updates.ts +192 -0
  50. package/scripts/ingest-eurlex.ts +219 -0
  51. package/src/index.ts +294 -0
  52. package/src/tools/applicability.ts +84 -0
  53. package/src/tools/article.ts +61 -0
  54. package/src/tools/compare.ts +94 -0
  55. package/src/tools/definitions.ts +54 -0
  56. package/src/tools/list.ts +116 -0
  57. package/src/tools/map.ts +84 -0
  58. package/src/tools/search.ts +95 -0
package/data/seed/applicability/dora.json ADDED
@@ -0,0 +1,92 @@
1
+ [
2
+ {
3
+ "regulation": "DORA",
4
+ "sector": "financial",
5
+ "subsector": "bank",
6
+ "applies": true,
7
+ "confidence": "definite",
8
+ "basis_article": "2",
9
+ "notes": "Credit institutions are in scope under Art 2(1)(a)"
10
+ },
11
+ {
12
+ "regulation": "DORA",
13
+ "sector": "financial",
14
+ "subsector": "insurance",
15
+ "applies": true,
16
+ "confidence": "definite",
17
+ "basis_article": "2",
18
+ "notes": "Insurance and reinsurance undertakings are in scope under Art 2(1)(d-e)"
19
+ },
20
+ {
21
+ "regulation": "DORA",
22
+ "sector": "financial",
23
+ "subsector": "investment",
24
+ "applies": true,
25
+ "confidence": "definite",
26
+ "basis_article": "2",
27
+ "notes": "Investment firms are in scope under Art 2(1)(b)"
28
+ },
29
+ {
30
+ "regulation": "DORA",
31
+ "sector": "financial",
32
+ "subsector": "payment",
33
+ "applies": true,
34
+ "confidence": "definite",
35
+ "basis_article": "2",
36
+ "notes": "Payment institutions and e-money institutions are in scope under Art 2(1)(c)"
37
+ },
38
+ {
39
+ "regulation": "DORA",
40
+ "sector": "financial",
41
+ "subsector": null,
42
+ "applies": true,
43
+ "confidence": "definite",
44
+ "basis_article": "2",
45
+ "notes": "All financial entities as defined in Art 2(1) are in scope"
46
+ },
47
+ {
48
+ "regulation": "DORA",
49
+ "sector": "digital_infrastructure",
50
+ "subsector": null,
51
+ "applies": true,
52
+ "confidence": "likely",
53
+ "basis_article": "2",
54
+ "notes": "ICT third-party service providers to financial entities may be in scope as critical third parties"
55
+ },
56
+ {
57
+ "regulation": "DORA",
58
+ "sector": "healthcare",
59
+ "subsector": null,
60
+ "applies": false,
61
+ "confidence": "definite",
62
+ "basis_article": "2",
63
+ "notes": "Healthcare sector is not within DORA scope (use NIS2)"
64
+ },
65
+ {
66
+ "regulation": "DORA",
67
+ "sector": "energy",
68
+ "subsector": null,
69
+ "applies": false,
70
+ "confidence": "definite",
71
+ "basis_article": "2",
72
+ "notes": "Energy sector is not within DORA scope (use NIS2)"
73
+ },
74
+ {
75
+ "regulation": "DORA",
76
+ "sector": "manufacturing",
77
+ "subsector": null,
78
+ "applies": false,
79
+ "confidence": "definite",
80
+ "basis_article": "2",
81
+ "notes": "Manufacturing sector is not within DORA scope"
82
+ },
83
+ {
84
+ "regulation": "DORA",
85
+ "sector": "other",
86
+ "subsector": null,
87
+ "applies": false,
88
+ "confidence": "definite",
89
+ "basis_article": "2",
90
+ "notes": "DORA applies only to financial sector entities"
91
+ }
92
+ ]
package/data/seed/applicability/gdpr.json ADDED
@@ -0,0 +1,74 @@
1
+ [
2
+ {
3
+ "regulation": "GDPR",
4
+ "sector": "financial",
5
+ "subsector": null,
6
+ "applies": true,
7
+ "confidence": "definite",
8
+ "basis_article": "2",
9
+ "notes": "GDPR applies to all sectors processing personal data of EU residents"
10
+ },
11
+ {
12
+ "regulation": "GDPR",
13
+ "sector": "healthcare",
14
+ "subsector": null,
15
+ "applies": true,
16
+ "confidence": "definite",
17
+ "basis_article": "2",
18
+ "notes": "GDPR applies, with special category data provisions (Art 9) for health data"
19
+ },
20
+ {
21
+ "regulation": "GDPR",
22
+ "sector": "energy",
23
+ "subsector": null,
24
+ "applies": true,
25
+ "confidence": "definite",
26
+ "basis_article": "2",
27
+ "notes": "GDPR applies to all sectors processing personal data"
28
+ },
29
+ {
30
+ "regulation": "GDPR",
31
+ "sector": "transport",
32
+ "subsector": null,
33
+ "applies": true,
34
+ "confidence": "definite",
35
+ "basis_article": "2",
36
+ "notes": "GDPR applies to all sectors processing personal data"
37
+ },
38
+ {
39
+ "regulation": "GDPR",
40
+ "sector": "digital_infrastructure",
41
+ "subsector": null,
42
+ "applies": true,
43
+ "confidence": "definite",
44
+ "basis_article": "2",
45
+ "notes": "GDPR applies to all sectors processing personal data"
46
+ },
47
+ {
48
+ "regulation": "GDPR",
49
+ "sector": "public_administration",
50
+ "subsector": null,
51
+ "applies": true,
52
+ "confidence": "definite",
53
+ "basis_article": "2",
54
+ "notes": "GDPR applies to public authorities, with specific provisions in Art 6"
55
+ },
56
+ {
57
+ "regulation": "GDPR",
58
+ "sector": "manufacturing",
59
+ "subsector": null,
60
+ "applies": true,
61
+ "confidence": "definite",
62
+ "basis_article": "2",
63
+ "notes": "GDPR applies to all sectors processing personal data"
64
+ },
65
+ {
66
+ "regulation": "GDPR",
67
+ "sector": "other",
68
+ "subsector": null,
69
+ "applies": true,
70
+ "confidence": "likely",
71
+ "basis_article": "2",
72
+ "notes": "GDPR likely applies if processing personal data of EU residents"
73
+ }
74
+ ]
package/data/seed/applicability/nis2.json ADDED
@@ -0,0 +1,83 @@
1
+ [
2
+ {
3
+ "regulation": "NIS2",
4
+ "sector": "energy",
5
+ "subsector": null,
6
+ "applies": true,
7
+ "confidence": "definite",
8
+ "basis_article": "2",
9
+ "notes": "Energy sector entities are essential entities under NIS2 Annex I"
10
+ },
11
+ {
12
+ "regulation": "NIS2",
13
+ "sector": "transport",
14
+ "subsector": null,
15
+ "applies": true,
16
+ "confidence": "definite",
17
+ "basis_article": "2",
18
+ "notes": "Transport sector entities are essential entities under NIS2 Annex I"
19
+ },
20
+ {
21
+ "regulation": "NIS2",
22
+ "sector": "financial",
23
+ "subsector": "bank",
24
+ "applies": true,
25
+ "confidence": "definite",
26
+ "basis_article": "2",
27
+ "notes": "Credit institutions are essential entities under NIS2 Annex I"
28
+ },
29
+ {
30
+ "regulation": "NIS2",
31
+ "sector": "financial",
32
+ "subsector": null,
33
+ "applies": true,
34
+ "confidence": "likely",
35
+ "basis_article": "2",
36
+ "notes": "Financial market infrastructure is covered; some entities may fall under DORA instead"
37
+ },
38
+ {
39
+ "regulation": "NIS2",
40
+ "sector": "healthcare",
41
+ "subsector": null,
42
+ "applies": true,
43
+ "confidence": "definite",
44
+ "basis_article": "2",
45
+ "notes": "Healthcare providers are essential entities under NIS2 Annex I"
46
+ },
47
+ {
48
+ "regulation": "NIS2",
49
+ "sector": "digital_infrastructure",
50
+ "subsector": null,
51
+ "applies": true,
52
+ "confidence": "definite",
53
+ "basis_article": "2",
54
+ "notes": "DNS providers, TLD registries, cloud providers, data centres are essential entities"
55
+ },
56
+ {
57
+ "regulation": "NIS2",
58
+ "sector": "public_administration",
59
+ "subsector": null,
60
+ "applies": true,
61
+ "confidence": "definite",
62
+ "basis_article": "2",
63
+ "notes": "Central government and regional entities are covered under NIS2"
64
+ },
65
+ {
66
+ "regulation": "NIS2",
67
+ "sector": "manufacturing",
68
+ "subsector": null,
69
+ "applies": true,
70
+ "confidence": "likely",
71
+ "basis_article": "2",
72
+ "notes": "Manufacturing of critical products (medical devices, chemicals) covered as important entities"
73
+ },
74
+ {
75
+ "regulation": "NIS2",
76
+ "sector": "other",
77
+ "subsector": null,
78
+ "applies": false,
79
+ "confidence": "possible",
80
+ "basis_article": "2",
81
+ "notes": "May apply depending on specific activities and size thresholds"
82
+ }
83
+ ]