@tantainnovative/ndpr-toolkit 3.6.1 → 3.10.1

package/dist/lawful-basis-lite.d.ts

@@ -0,0 +1,153 @@
+import React__default from 'react';
+
+/**
+ * Analyzes all processing activities and returns compliance gaps including
+ * missing DPO approval, overdue reviews, undocumented justifications,
+ * missing LIA for legitimate interests, and other documentation issues.
+ *
+ * @param activities Array of processing activities to analyze
+ * @returns Array of identified compliance gaps
+ */
+export declare function assessComplianceGaps(activities: ProcessingActivity[]): LawfulBasisComplianceGap[];
+
+/**
+ * Generates a summary of all lawful basis documentation across processing activities.
+ *
+ * @param activities Array of processing activities to summarize
+ * @returns LawfulBasisSummary with counts, breakdowns, and flagged activities
+ */
+export declare function generateLawfulBasisSummary(activities: ProcessingActivity[]): LawfulBasisSummary;
+
+/**
+ * Compliance gap identified across processing activities
+ */
+export declare interface LawfulBasisComplianceGap {
+    activityId: string;
+    activityName: string;
+    type: 'missing_approval' | 'overdue_review' | 'missing_justification' | 'missing_lia' | 'missing_sensitive_condition' | 'missing_retention' | 'missing_data_categories' | 'missing_purposes';
+    severity: 'high' | 'medium' | 'low';
+    description: string;
+}
+
+/**
+ * Summary of all lawful basis documentation for compliance reporting
+ */
+export declare interface LawfulBasisSummary {
+    /** Total number of processing activities */
+    totalActivities: number;
+    /** Breakdown by lawful basis */
+    byBasis: Record<LawfulBasisType, number>;
+    /** Number of activities involving sensitive data */
+    sensitiveDataActivities: number;
+    /** Number of activities involving cross-border transfers */
+    crossBorderActivities: number;
+    /** Activities due for review */
+    activitiesDueForReview: ProcessingActivity[];
+    /** Activities without DPO approval */
+    activitiesWithoutApproval: ProcessingActivity[];
+    /** Last updated timestamp */
+    lastUpdated: number;
+}
+
+export declare const LawfulBasisTrackerLite: React__default.FC<LawfulBasisTrackerLiteProps>;
+
+export declare interface LawfulBasisTrackerLiteClassNames {
+    root?: string;
+    header?: string;
+    title?: string;
+    summary?: string;
+    summaryCard?: string;
+    table?: string;
+    tableHeader?: string;
+    tableRow?: string;
+    statusBadge?: string;
+    complianceScore?: string;
+    gapAlert?: string;
+}
+
+export declare interface LawfulBasisTrackerLiteProps {
+    activities: ProcessingActivity[];
+    title?: string;
+    description?: string;
+    className?: string;
+    classNames?: LawfulBasisTrackerLiteClassNames;
+    unstyled?: boolean;
+    showSummary?: boolean;
+    showComplianceGaps?: boolean;
+    onActivityClick?: (activity: ProcessingActivity) => void;
+}
+
+/**
+ * Lawful Basis types aligned with NDPA 2023 Part III (Sections 24-28)
+ * Every processing activity must have a documented lawful basis
+ */
+/**
+ * The six lawful bases for processing personal data per NDPA Section 25(1)
+ */
+export declare type LawfulBasisType = 'consent' | 'contract' | 'legal_obligation' | 'vital_interests' | 'public_interest' | 'legitimate_interests';
+
+/**
+ * Validation result for a processing activity
+ */
+export declare interface LawfulBasisValidationResult {
+    isValid: boolean;
+    errors: string[];
+    warnings: string[];
+}
+
+/**
+ * Represents a processing activity and its lawful basis
+ */
+export declare interface ProcessingActivity {
+    /** Unique identifier */
+    id: string;
+    /** Name of the processing activity */
+    name: string;
+    /** Description of what processing is performed */
+    description: string;
+    /** The lawful basis for this processing activity */
+    lawfulBasis: LawfulBasisType;
+    /** Justification for why this lawful basis applies */
+    lawfulBasisJustification: string;
+    /** Categories of personal data being processed */
+    dataCategories: string[];
+    /** Whether sensitive personal data is involved */
+    involvesSensitiveData: boolean;
+    /** Condition for processing sensitive data (required if involvesSensitiveData is true) */
+    sensitiveDataCondition?: SensitiveDataCondition;
+    /** Categories of data subjects */
+    dataSubjectCategories: string[];
+    /** Purposes of the processing */
+    purposes: string[];
+    /** Data retention period */
+    retentionPeriod: string;
+    /** Justification for the retention period */
+    retentionJustification?: string;
+    /** Recipients or categories of recipients */
+    recipients?: string[];
+    /** Whether data is transferred outside Nigeria */
+    crossBorderTransfer: boolean;
+    /** Timestamp when the record was created */
+    createdAt: number;
+    /** Timestamp when the record was last updated */
+    updatedAt: number;
+    /** Next review date */
+    reviewDate?: number;
+    /** Status of the processing activity */
+    status: 'active' | 'inactive' | 'under_review' | 'archived';
+    /** DPO approval details */
+    dpoApproval?: {
+        approved: boolean;
+        approvedBy: string;
+        approvedAt: number;
+        notes?: string;
+    };
+}
+
+/**
+ * Additional conditions required for processing sensitive personal data
+ * per NDPA Section 27
+ */
+declare type SensitiveDataCondition = 'explicit_consent' | 'employment_law' | 'vital_interests_incapable' | 'nonprofit_legitimate' | 'publicly_available' | 'legal_claims' | 'substantial_public_interest' | 'health_purposes' | 'public_health' | 'archiving_research';
+
+export { }

package/dist/lawful-basis-lite.js

@@ -0,0 +1,2 @@
+"use client";
+'use strict';var chunkWZYCBW2R_js=require('./chunk-WZYCBW2R.js'),chunkAME4HJR4_js=require('./chunk-AME4HJR4.js');require('./chunk-RFPLZDIO.js');var react=require('react'),jsxRuntime=require('react/jsx-runtime');var P={consent:"Consent",contract:"Contract",legal_obligation:"Legal Obligation",vital_interests:"Vital Interests",public_interest:"Public Interest",legitimate_interests:"Legitimate Interests"},T={consent:"ndpr-badge ndpr-badge--info",contract:"ndpr-badge ndpr-badge--info",legal_obligation:"ndpr-badge ndpr-badge--info",vital_interests:"ndpr-badge ndpr-badge--destructive",public_interest:"ndpr-badge ndpr-badge--warning",legitimate_interests:"bg-indigo-100 text-indigo-800 dark:bg-indigo-900 dark:text-indigo-200"},D={active:"Active",inactive:"Inactive",under_review:"Under Review",archived:"Archived"},R={active:"ndpr-badge ndpr-badge--success",inactive:"ndpr-badge ndpr-badge--neutral",under_review:"ndpr-badge ndpr-badge--warning",archived:"ndpr-badge ndpr-badge--destructive"},G=p=>new Date(p).toLocaleDateString(),E=({activities:p,title:x="Lawful Basis Tracker",description:w="Document and track the lawful basis for each processing activity as required by NDPA 2023 Section 25.",className:_="",classNames:e,unstyled:i,showSummary:h=true,showComplianceGaps:L=true,onActivityClick:g})=>{let f=react.useMemo(()=>[...p].sort((r,d)=>d.updatedAt-r.updatedAt),[p]),l=react.useMemo(()=>chunkWZYCBW2R_js.d(p),[p]),o=react.useMemo(()=>chunkWZYCBW2R_js.c(p),[p]),c=react.useMemo(()=>o.filter(r=>r.severity==="high"),[o]),u=react.useMemo(()=>o.filter(r=>r.severity==="medium"),[o]),y=r=>jsxRuntime.jsx("span",{className:chunkAME4HJR4_js.a(`px-2 py-1 rounded text-xs font-medium ${R[r]}`,e==null?void 0:e.statusBadge,i),children:D[r]}),A=r=>jsxRuntime.jsx("span",{className:`px-2 py-1 rounded text-xs font-medium ${T[r]}`,children:P[r]}),B=r=>r.dpoApproval?r.dpoApproval.approved?jsxRuntime.jsx("span",{className:"ndpr-badge ndpr-badge--success",children:"Approved"}):jsxRuntime.jsx("span",{className:"ndpr-badge ndpr-badge--warning",children:"Pending Approval"}):jsxRuntime.jsx("span",{className:"px-2 py-1 rounded text-xs font-medium bg-gray-100 text-gray-600 dark:bg-gray-700 dark:text-gray-400",children:"No DPO Review"}),S=()=>jsxRuntime.jsxs("div",{"data-ndpr-component":"lawful-basis-tracker-lite",className:chunkAME4HJR4_js.a("grid grid-cols-2 md:grid-cols-4 gap-4 mb-6",e==null?void 0:e.summary,i),role:"status","aria-label":"Compliance summary",children:[jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("ndpr-alert ndpr-alert--info",e==null?void 0:e.summaryCard,i),children:[jsxRuntime.jsx("p",{className:"ndpr-stat__value ndpr-text-info",children:l.totalActivities}),jsxRuntime.jsx("p",{className:"text-sm ndpr-text-info",children:"Total Activities"})]}),jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("bg-orange-50 dark:bg-orange-900/20 p-4 rounded-lg",e==null?void 0:e.summaryCard,i),children:[jsxRuntime.jsx("p",{className:"ndpr-stat__value ndpr-text-warning",children:l.sensitiveDataActivities}),jsxRuntime.jsx("p",{className:"text-sm ndpr-text-warning",children:"Sensitive Data"})]}),jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("ndpr-alert ndpr-alert--info",e==null?void 0:e.summaryCard,i),children:[jsxRuntime.jsx("p",{className:"ndpr-stat__value ndpr-text-info",children:l.crossBorderActivities}),jsxRuntime.jsx("p",{className:"text-sm ndpr-text-info",children:"Cross-Border Transfers"})]}),jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("ndpr-alert ndpr-alert--destructive",e==null?void 0:e.summaryCard,i),children:[jsxRuntime.jsx("p",{className:"ndpr-stat__value ndpr-text-destructive",children:l.activitiesWithoutApproval.length}),jsxRuntime.jsx("p",{className:"text-sm ndpr-text-destructive",children:"Pending Approval"})]})]}),k=()=>o.length===0?jsxRuntime.jsxs("div",{className:"bg-green-50 dark:bg-green-900/20 p-4 rounded-lg mb-6",role:"status","aria-label":"No compliance gaps",children:[jsxRuntime.jsx("p",{className:"text-sm ndpr-text-success font-medium",children:"No compliance gaps detected."}),jsxRuntime.jsx("p",{className:"text-xs ndpr-text-success mt-1",children:"All processing activities appear to be properly documented."})]}):jsxRuntime.jsxs("div",{className:"mb-6",role:"status","aria-label":`${o.length} compliance gaps detected`,children:[c.length>0&&jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("bg-red-50 dark:bg-red-900/20 p-4 rounded-lg mb-3",e==null?void 0:e.gapAlert,i),children:[jsxRuntime.jsxs("p",{className:"text-sm ndpr-text-destructive font-medium mb-2",children:["High Priority (",c.length,")"]}),jsxRuntime.jsx("ul",{className:"space-y-1",children:c.map((r,d)=>jsxRuntime.jsx("li",{className:"text-xs ndpr-text-destructive",children:r.description},d))})]}),u.length>0&&jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("ndpr-alert ndpr-alert--warning",e==null?void 0:e.gapAlert,i),children:[jsxRuntime.jsxs("p",{className:"text-sm ndpr-text-warning font-medium mb-2",children:["Medium Priority (",u.length,")"]}),jsxRuntime.jsx("ul",{className:"space-y-1",children:u.map((r,d)=>jsxRuntime.jsx("li",{className:"text-xs ndpr-text-warning",children:r.description},d))})]})]});return jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a(`bg-white dark:bg-gray-800 p-6 rounded-lg shadow-md ${_}`,e==null?void 0:e.root,i),children:[jsxRuntime.jsxs("div",{className:chunkAME4HJR4_js.a("",e==null?void 0:e.header,i),children:[jsxRuntime.jsx("h2",{className:chunkAME4HJR4_js.a("ndpr-section-heading",e==null?void 0:e.title,i),children:x}),jsxRuntime.jsx("p",{className:"ndpr-card__subtitle",children:w})]}),h&&S(),L&&k(),f.length===0?jsxRuntime.jsx("div",{className:"flex items-center justify-center h-32 bg-gray-50 dark:bg-gray-700 rounded-md",children:jsxRuntime.jsx("p",{className:"ndpr-card__subtitle",children:"No processing activities found."})}):jsxRuntime.jsx("div",{className:"overflow-x-auto",children:jsxRuntime.jsxs("table",{className:chunkAME4HJR4_js.a("w-full text-sm text-left",e==null?void 0:e.table,i),children:[jsxRuntime.jsx("thead",{className:chunkAME4HJR4_js.a("ndpr-table__head",e==null?void 0:e.tableHeader,i),children:jsxRuntime.jsxs("tr",{children:[jsxRuntime.jsx("th",{className:"ndpr-table__cell",children:"Activity"}),jsxRuntime.jsx("th",{className:"ndpr-table__cell",children:"Lawful Basis"}),jsxRuntime.jsx("th",{className:"ndpr-table__cell",children:"Status"}),jsxRuntime.jsx("th",{className:"ndpr-table__cell",children:"DPO Approval"}),jsxRuntime.jsx("th",{className:"ndpr-table__cell",children:"Sensitive Data"}),jsxRuntime.jsx("th",{className:"ndpr-table__cell",children:"Last Updated"})]})}),jsxRuntime.jsx("tbody",{children:f.map(r=>{let d=typeof g=="function",C=d?m=>{(m.key==="Enter"||m.key===" ")&&(m.preventDefault(),g(r));}:void 0;return jsxRuntime.jsxs("tr",{className:chunkAME4HJR4_js.a(`border-b border-gray-200 dark:border-gray-600${d?" hover:bg-gray-50 dark:hover:bg-gray-700 cursor-pointer":""}`,e==null?void 0:e.tableRow,i),onClick:d?()=>g(r):void 0,onKeyDown:C,role:d?"button":void 0,tabIndex:d?0:void 0,"aria-label":d?`View ${r.name}`:void 0,children:[jsxRuntime.jsxs("td",{className:"ndpr-table__cell",children:[jsxRuntime.jsx("span",{className:"font-medium ndpr-text-primary",children:r.name}),jsxRuntime.jsx("p",{className:"text-xs ndpr-text-muted mt-1 truncate max-w-xs",children:r.description})]}),jsxRuntime.jsx("td",{className:"ndpr-table__cell",children:A(r.lawfulBasis)}),jsxRuntime.jsx("td",{className:"ndpr-table__cell",children:y(r.status)}),jsxRuntime.jsx("td",{className:"ndpr-table__cell",children:B(r)}),jsxRuntime.jsx("td",{className:"ndpr-table__cell",children:jsxRuntime.jsx("span",{className:`text-xs ${r.involvesSensitiveData?"ndpr-text-warning font-medium":"ndpr-card__subtitle"}`,children:r.involvesSensitiveData?"Yes":"No"})}),jsxRuntime.jsx("td",{className:"ndpr-table__cell ndpr-table__cell--muted",children:G(r.updatedAt)})]},r.id)})})]})})]})};Object.defineProperty(exports,"assessComplianceGaps",{enumerable:true,get:function(){return chunkWZYCBW2R_js.c}});Object.defineProperty(exports,"generateLawfulBasisSummary",{enumerable:true,get:function(){return chunkWZYCBW2R_js.d}});exports.LawfulBasisTrackerLite=E;

package/dist/lawful-basis-lite.mjs

@@ -0,0 +1,2 @@
+"use client";
+import {d,c}from'./chunk-LWIKDDSU.mjs';export{c as assessComplianceGaps,d as generateLawfulBasisSummary}from'./chunk-LWIKDDSU.mjs';import {a}from'./chunk-SFGW37LE.mjs';import'./chunk-ZJYULEER.mjs';import {useMemo}from'react';import {jsxs,jsx}from'react/jsx-runtime';var P={consent:"Consent",contract:"Contract",legal_obligation:"Legal Obligation",vital_interests:"Vital Interests",public_interest:"Public Interest",legitimate_interests:"Legitimate Interests"},T={consent:"ndpr-badge ndpr-badge--info",contract:"ndpr-badge ndpr-badge--info",legal_obligation:"ndpr-badge ndpr-badge--info",vital_interests:"ndpr-badge ndpr-badge--destructive",public_interest:"ndpr-badge ndpr-badge--warning",legitimate_interests:"bg-indigo-100 text-indigo-800 dark:bg-indigo-900 dark:text-indigo-200"},D={active:"Active",inactive:"Inactive",under_review:"Under Review",archived:"Archived"},R={active:"ndpr-badge ndpr-badge--success",inactive:"ndpr-badge ndpr-badge--neutral",under_review:"ndpr-badge ndpr-badge--warning",archived:"ndpr-badge ndpr-badge--destructive"},G=p=>new Date(p).toLocaleDateString(),E=({activities:p,title:x="Lawful Basis Tracker",description:w="Document and track the lawful basis for each processing activity as required by NDPA 2023 Section 25.",className:_="",classNames:e,unstyled:i,showSummary:h=true,showComplianceGaps:L=true,onActivityClick:g})=>{let f=useMemo(()=>[...p].sort((r,d)=>d.updatedAt-r.updatedAt),[p]),l=useMemo(()=>d(p),[p]),o=useMemo(()=>c(p),[p]),c$1=useMemo(()=>o.filter(r=>r.severity==="high"),[o]),u=useMemo(()=>o.filter(r=>r.severity==="medium"),[o]),y=r=>jsx("span",{className:a(`px-2 py-1 rounded text-xs font-medium ${R[r]}`,e==null?void 0:e.statusBadge,i),children:D[r]}),A=r=>jsx("span",{className:`px-2 py-1 rounded text-xs font-medium ${T[r]}`,children:P[r]}),B=r=>r.dpoApproval?r.dpoApproval.approved?jsx("span",{className:"ndpr-badge ndpr-badge--success",children:"Approved"}):jsx("span",{className:"ndpr-badge ndpr-badge--warning",children:"Pending Approval"}):jsx("span",{className:"px-2 py-1 rounded text-xs font-medium bg-gray-100 text-gray-600 dark:bg-gray-700 dark:text-gray-400",children:"No DPO Review"}),S=()=>jsxs("div",{"data-ndpr-component":"lawful-basis-tracker-lite",className:a("grid grid-cols-2 md:grid-cols-4 gap-4 mb-6",e==null?void 0:e.summary,i),role:"status","aria-label":"Compliance summary",children:[jsxs("div",{className:a("ndpr-alert ndpr-alert--info",e==null?void 0:e.summaryCard,i),children:[jsx("p",{className:"ndpr-stat__value ndpr-text-info",children:l.totalActivities}),jsx("p",{className:"text-sm ndpr-text-info",children:"Total Activities"})]}),jsxs("div",{className:a("bg-orange-50 dark:bg-orange-900/20 p-4 rounded-lg",e==null?void 0:e.summaryCard,i),children:[jsx("p",{className:"ndpr-stat__value ndpr-text-warning",children:l.sensitiveDataActivities}),jsx("p",{className:"text-sm ndpr-text-warning",children:"Sensitive Data"})]}),jsxs("div",{className:a("ndpr-alert ndpr-alert--info",e==null?void 0:e.summaryCard,i),children:[jsx("p",{className:"ndpr-stat__value ndpr-text-info",children:l.crossBorderActivities}),jsx("p",{className:"text-sm ndpr-text-info",children:"Cross-Border Transfers"})]}),jsxs("div",{className:a("ndpr-alert ndpr-alert--destructive",e==null?void 0:e.summaryCard,i),children:[jsx("p",{className:"ndpr-stat__value ndpr-text-destructive",children:l.activitiesWithoutApproval.length}),jsx("p",{className:"text-sm ndpr-text-destructive",children:"Pending Approval"})]})]}),k=()=>o.length===0?jsxs("div",{className:"bg-green-50 dark:bg-green-900/20 p-4 rounded-lg mb-6",role:"status","aria-label":"No compliance gaps",children:[jsx("p",{className:"text-sm ndpr-text-success font-medium",children:"No compliance gaps detected."}),jsx("p",{className:"text-xs ndpr-text-success mt-1",children:"All processing activities appear to be properly documented."})]}):jsxs("div",{className:"mb-6",role:"status","aria-label":`${o.length} compliance gaps detected`,children:[c$1.length>0&&jsxs("div",{className:a("bg-red-50 dark:bg-red-900/20 p-4 rounded-lg mb-3",e==null?void 0:e.gapAlert,i),children:[jsxs("p",{className:"text-sm ndpr-text-destructive font-medium mb-2",children:["High Priority (",c$1.length,")"]}),jsx("ul",{className:"space-y-1",children:c$1.map((r,d)=>jsx("li",{className:"text-xs ndpr-text-destructive",children:r.description},d))})]}),u.length>0&&jsxs("div",{className:a("ndpr-alert ndpr-alert--warning",e==null?void 0:e.gapAlert,i),children:[jsxs("p",{className:"text-sm ndpr-text-warning font-medium mb-2",children:["Medium Priority (",u.length,")"]}),jsx("ul",{className:"space-y-1",children:u.map((r,d)=>jsx("li",{className:"text-xs ndpr-text-warning",children:r.description},d))})]})]});return jsxs("div",{className:a(`bg-white dark:bg-gray-800 p-6 rounded-lg shadow-md ${_}`,e==null?void 0:e.root,i),children:[jsxs("div",{className:a("",e==null?void 0:e.header,i),children:[jsx("h2",{className:a("ndpr-section-heading",e==null?void 0:e.title,i),children:x}),jsx("p",{className:"ndpr-card__subtitle",children:w})]}),h&&S(),L&&k(),f.length===0?jsx("div",{className:"flex items-center justify-center h-32 bg-gray-50 dark:bg-gray-700 rounded-md",children:jsx("p",{className:"ndpr-card__subtitle",children:"No processing activities found."})}):jsx("div",{className:"overflow-x-auto",children:jsxs("table",{className:a("w-full text-sm text-left",e==null?void 0:e.table,i),children:[jsx("thead",{className:a("ndpr-table__head",e==null?void 0:e.tableHeader,i),children:jsxs("tr",{children:[jsx("th",{className:"ndpr-table__cell",children:"Activity"}),jsx("th",{className:"ndpr-table__cell",children:"Lawful Basis"}),jsx("th",{className:"ndpr-table__cell",children:"Status"}),jsx("th",{className:"ndpr-table__cell",children:"DPO Approval"}),jsx("th",{className:"ndpr-table__cell",children:"Sensitive Data"}),jsx("th",{className:"ndpr-table__cell",children:"Last Updated"})]})}),jsx("tbody",{children:f.map(r=>{let d=typeof g=="function",C=d?m=>{(m.key==="Enter"||m.key===" ")&&(m.preventDefault(),g(r));}:void 0;return jsxs("tr",{className:a(`border-b border-gray-200 dark:border-gray-600${d?" hover:bg-gray-50 dark:hover:bg-gray-700 cursor-pointer":""}`,e==null?void 0:e.tableRow,i),onClick:d?()=>g(r):void 0,onKeyDown:C,role:d?"button":void 0,tabIndex:d?0:void 0,"aria-label":d?`View ${r.name}`:void 0,children:[jsxs("td",{className:"ndpr-table__cell",children:[jsx("span",{className:"font-medium ndpr-text-primary",children:r.name}),jsx("p",{className:"text-xs ndpr-text-muted mt-1 truncate max-w-xs",children:r.description})]}),jsx("td",{className:"ndpr-table__cell",children:A(r.lawfulBasis)}),jsx("td",{className:"ndpr-table__cell",children:y(r.status)}),jsx("td",{className:"ndpr-table__cell",children:B(r)}),jsx("td",{className:"ndpr-table__cell",children:jsx("span",{className:`text-xs ${r.involvesSensitiveData?"ndpr-text-warning font-medium":"ndpr-card__subtitle"}`,children:r.involvesSensitiveData?"Yes":"No"})}),jsx("td",{className:"ndpr-table__cell ndpr-table__cell--muted",children:G(r.updatedAt)})]},r.id)})})]})})]})};export{E as LawfulBasisTrackerLite};

package/dist/policy.d.mts

@@ -8,6 +8,12 @@ declare interface AdaptivePolicyWizardProps {
     onComplete?: (policy: PrivacyPolicy) => void;
     classNames?: Record<string, string>;
     unstyled?: boolean;
+    /**
+     * Initial template context — seeds the wizard with a sector-specific
+     * pre-fill. Use `templateContextFor('saas' | 'ecommerce' | …)` from
+     * `/server` (or `/core`) to construct it.
+     */
+    initialContext?: TemplateContext;
 }
 
 /**
@@ -324,6 +330,18 @@ declare interface HTMLExportOptions {
 /** Industry verticals with sector-specific compliance requirements. */
 export declare type Industry = 'fintech' | 'healthcare' | 'ecommerce' | 'saas' | 'education' | 'government' | 'other';
 
+/**
+ * Static metadata for every template — useful for picker UIs that need
+ * to list available templates with a one-line description.
+ */
+export declare const ORG_POLICY_TEMPLATE_REGISTRY: Record<OrgPolicyTemplateId, {
+    id: OrgPolicyTemplateId;
+    label: string;
+    description: string;
+    /** Best-fit org examples to show in the picker. */
+    examples: readonly string[];
+}>;
+
 /**
  * Represents organization information for a privacy policy
  */
@@ -348,6 +366,48 @@ export declare interface OrganizationInfo {
     ndpcRegistrationNumber?: string;
 }
 
+/**
+ * Org-specific privacy-policy templates — pre-filled `TemplateContext`
+ * factories for the most common Nigerian app shapes.
+ *
+ * Each template returns a fully-populated `TemplateContext` with:
+ * - industry set to the matching `Industry` value
+ * - the data categories the sector typically collects (selected: true)
+ * - the processing purposes that match the business model
+ * - sensitive-data / children / cross-border / automated-decisions flags
+ *   set to the defaults that org type usually needs (a school will have
+ *   children data, a hospital will have sensitive data, etc.)
+ *
+ * Templates are guidance starters. The wizard still walks the user through
+ * every step — they can flip any flag, add/remove categories, or rewrite
+ * any section before the policy is finalised. The legal-notice footer the
+ * toolkit ships everywhere applies to the generated output.
+ *
+ * @example
+ *   import { templateContextFor } from '@tantainnovative/ndpr-toolkit/server';
+ *   const ctx = templateContextFor('ecommerce', { orgName: 'Acme NG' });
+ *   const draft = assemblePolicy(ctx);
+ */
+
+/** Identifiers for the bundled org templates. */
+export declare type OrgPolicyTemplateId = 'saas' | 'ecommerce' | 'school' | 'healthcare' | 'procurement';
+
+/** Optional overrides applied on top of a template's defaults. */
+export declare interface OrgPolicyTemplateOverrides {
+    /** Organisation name (e.g. "Acme Nigeria Ltd"). Default: empty. */
+    orgName?: string;
+    /** Public website URL. */
+    website?: string;
+    /** Privacy contact email. */
+    privacyEmail?: string;
+    /** Postal address. */
+    address?: string;
+    /** DPO name. Required for DCPMI under NDPA Section 32. */
+    dpoName?: string;
+    /** DPO email. Required for the NDPC breach-notification contact. */
+    dpoEmail?: string;
+}
+
 /** Organisation size tiers — affects complexity of generated language. */
 export declare type OrgSize = 'startup' | 'midsize' | 'enterprise';
 
@@ -936,6 +996,22 @@ export declare interface TemplateContext {
     thirdPartyProcessors: ThirdPartyProcessor[];
 }
 
+/**
+ * Returns a fresh `TemplateContext` pre-filled for the given org type.
+ * Pass `overrides` to set organisation details (name, DPO, etc.) inline.
+ *
+ * Calling without arguments throws — pass a known template id.
+ *
+ * @example
+ *   const ctx = templateContextFor('healthcare', {
+ *     orgName: 'Lagos Heart Centre',
+ *     dpoEmail: 'dpo@lhc.ng',
+ *   });
+ */
+declare function templateContextFor(id: OrgPolicyTemplateId, overrides?: OrgPolicyTemplateOverrides): TemplateContext;
+export { templateContextFor as createOrgTemplate }
+export { templateContextFor }
+
 /** A third-party entity that processes data on behalf of the organisation. */
 export declare interface ThirdPartyProcessor {
     /** Name of the third party. */
@@ -952,6 +1028,16 @@ export declare interface UseAdaptivePolicyWizardOptions {
     adapter?: StorageAdapter<PolicyDraft>;
     onComplete?: (policy: PrivacyPolicy) => void;
     onComplianceChange?: (score: number, gaps: ComplianceGap[]) => void;
+    /**
+     * Initial template context. Use an org-template factory like
+     * `templateContextFor('healthcare')` to start the wizard with a sector-
+     * specific pre-fill (lawful basis, data categories, sensitive-data flag,
+     * cross-border default). Defaults to `createDefaultContext()` if omitted.
+     *
+     * If an adapter loads a saved draft, the draft's context wins — the
+     * `initialContext` only seeds the very first session.
+     */
+    initialContext?: TemplateContext;
 }
 
 export declare interface UseAdaptivePolicyWizardReturn {

package/dist/policy.d.ts

@@ -8,6 +8,12 @@ declare interface AdaptivePolicyWizardProps {
     onComplete?: (policy: PrivacyPolicy) => void;
     classNames?: Record<string, string>;
     unstyled?: boolean;
+    /**
+     * Initial template context — seeds the wizard with a sector-specific
+     * pre-fill. Use `templateContextFor('saas' | 'ecommerce' | …)` from
+     * `/server` (or `/core`) to construct it.
+     */
+    initialContext?: TemplateContext;
 }
 
 /**
@@ -324,6 +330,18 @@ declare interface HTMLExportOptions {
 /** Industry verticals with sector-specific compliance requirements. */
 export declare type Industry = 'fintech' | 'healthcare' | 'ecommerce' | 'saas' | 'education' | 'government' | 'other';
 
+/**
+ * Static metadata for every template — useful for picker UIs that need
+ * to list available templates with a one-line description.
+ */
+export declare const ORG_POLICY_TEMPLATE_REGISTRY: Record<OrgPolicyTemplateId, {
+    id: OrgPolicyTemplateId;
+    label: string;
+    description: string;
+    /** Best-fit org examples to show in the picker. */
+    examples: readonly string[];
+}>;
+
 /**
  * Represents organization information for a privacy policy
  */
@@ -348,6 +366,48 @@ export declare interface OrganizationInfo {
     ndpcRegistrationNumber?: string;
 }
 
+/**
+ * Org-specific privacy-policy templates — pre-filled `TemplateContext`
+ * factories for the most common Nigerian app shapes.
+ *
+ * Each template returns a fully-populated `TemplateContext` with:
+ * - industry set to the matching `Industry` value
+ * - the data categories the sector typically collects (selected: true)
+ * - the processing purposes that match the business model
+ * - sensitive-data / children / cross-border / automated-decisions flags
+ *   set to the defaults that org type usually needs (a school will have
+ *   children data, a hospital will have sensitive data, etc.)
+ *
+ * Templates are guidance starters. The wizard still walks the user through
+ * every step — they can flip any flag, add/remove categories, or rewrite
+ * any section before the policy is finalised. The legal-notice footer the
+ * toolkit ships everywhere applies to the generated output.
+ *
+ * @example
+ *   import { templateContextFor } from '@tantainnovative/ndpr-toolkit/server';
+ *   const ctx = templateContextFor('ecommerce', { orgName: 'Acme NG' });
+ *   const draft = assemblePolicy(ctx);
+ */
+
+/** Identifiers for the bundled org templates. */
+export declare type OrgPolicyTemplateId = 'saas' | 'ecommerce' | 'school' | 'healthcare' | 'procurement';
+
+/** Optional overrides applied on top of a template's defaults. */
+export declare interface OrgPolicyTemplateOverrides {
+    /** Organisation name (e.g. "Acme Nigeria Ltd"). Default: empty. */
+    orgName?: string;
+    /** Public website URL. */
+    website?: string;
+    /** Privacy contact email. */
+    privacyEmail?: string;
+    /** Postal address. */
+    address?: string;
+    /** DPO name. Required for DCPMI under NDPA Section 32. */
+    dpoName?: string;
+    /** DPO email. Required for the NDPC breach-notification contact. */
+    dpoEmail?: string;
+}
+
 /** Organisation size tiers — affects complexity of generated language. */
 export declare type OrgSize = 'startup' | 'midsize' | 'enterprise';
 
@@ -936,6 +996,22 @@ export declare interface TemplateContext {
     thirdPartyProcessors: ThirdPartyProcessor[];
 }
 
+/**
+ * Returns a fresh `TemplateContext` pre-filled for the given org type.
+ * Pass `overrides` to set organisation details (name, DPO, etc.) inline.
+ *
+ * Calling without arguments throws — pass a known template id.
+ *
+ * @example
+ *   const ctx = templateContextFor('healthcare', {
+ *     orgName: 'Lagos Heart Centre',
+ *     dpoEmail: 'dpo@lhc.ng',
+ *   });
+ */
+declare function templateContextFor(id: OrgPolicyTemplateId, overrides?: OrgPolicyTemplateOverrides): TemplateContext;
+export { templateContextFor as createOrgTemplate }
+export { templateContextFor }
+
 /** A third-party entity that processes data on behalf of the organisation. */
 export declare interface ThirdPartyProcessor {
     /** Name of the third party. */
@@ -952,6 +1028,16 @@ export declare interface UseAdaptivePolicyWizardOptions {
     adapter?: StorageAdapter<PolicyDraft>;
     onComplete?: (policy: PrivacyPolicy) => void;
     onComplianceChange?: (score: number, gaps: ComplianceGap[]) => void;
+    /**
+     * Initial template context. Use an org-template factory like
+     * `templateContextFor('healthcare')` to start the wizard with a sector-
+     * specific pre-fill (lawful basis, data categories, sensitive-data flag,
+     * cross-border default). Defaults to `createDefaultContext()` if omitted.
+     *
+     * If an adapter loads a saved draft, the draft's context wins — the
+     * `initialContext` only seeds the very first session.
+     */
+    initialContext?: TemplateContext;
 }
 
 export declare interface UseAdaptivePolicyWizardReturn {

package/dist/policy.js

@@ -1,2 +1,2 @@
 "use client";
-'use strict';var chunkI2LMQWK3_js=require('./chunk-I2LMQWK3.js'),chunkXO3VQYTL_js=require('./chunk-XO3VQYTL.js'),chunkZ763UI5U_js=require('./chunk-Z763UI5U.js'),chunkUI536RU2_js=require('./chunk-UI536RU2.js'),chunkN3MQQUQP_js=require('./chunk-N3MQQUQP.js'),chunkLVGT3DLT_js=require('./chunk-LVGT3DLT.js'),chunkQ64735OC_js=require('./chunk-Q64735OC.js');require('./chunk-ZVOIR4QH.js'),require('./chunk-AME4HJR4.js'),require('./chunk-VWED6UTN.js');var chunkRFPLZDIO_js=require('./chunk-RFPLZDIO.js'),react=require('react'),jsxRuntime=require('react/jsx-runtime');var u=react.createContext(null);function Y(){let o=react.useContext(u);if(!o)throw new Error("Policy compound components must be wrapped in <Policy.Provider>. Example: <Policy.Provider templates={...}><Policy.Generator /></Policy.Provider>");return o}var x=({templates:o,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:a,children:e})=>{let y=chunkZ763UI5U_js.a({templates:o,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:a}),r=chunkRFPLZDIO_js.b(chunkRFPLZDIO_js.a({},y),{templates:o});return jsxRuntime.jsx(u.Provider,{value:r,children:e})};var X={Provider:x,Generator:chunkXO3VQYTL_js.a,Preview:chunkXO3VQYTL_js.b,Exporter:chunkXO3VQYTL_js.c};var Q=({policy:o,className:l,mode:t="shadow",options:i})=>{let p=react.useRef(null);if(react.useEffect(()=>{var g;if(t!=="shadow")return;let e=p.current;if(!e)return;let y=chunkN3MQQUQP_js.a(o,chunkRFPLZDIO_js.a({includeStyles:true,includePrintCSS:true},i)),r=(g=e.shadowRoot)!=null?g:e.attachShadow({mode:"open"});r.innerHTML=y;let v=h=>{var A;let C=h.target;if(!C)return;let T=C.closest("a[href]");if(!T)return;let P=(A=T.getAttribute("href"))!=null?A:"";if(!P.startsWith("#")||P.length<2)return;let R=decodeURIComponent(P.slice(1)),E=r.getElementById(R);E&&(h.preventDefault(),E.scrollIntoView({behavior:"smooth",block:"start"}));};return r.addEventListener("click",v),()=>{r.removeEventListener("click",v),e.shadowRoot&&(e.shadowRoot.innerHTML="");}},[o,i,t]),t==="shadow")return jsxRuntime.jsx("div",{ref:p,"data-ndpr-component":"policy-page",className:l});let a=chunkN3MQQUQP_js.a(o,chunkRFPLZDIO_js.a({includeStyles:false},i));return jsxRuntime.jsx("div",{"data-ndpr-component":"policy-page",className:l,dangerouslySetInnerHTML:{__html:a}})};Object.defineProperty(exports,"AdaptivePolicyWizard",{enumerable:true,get:function(){return chunkI2LMQWK3_js.a}});Object.defineProperty(exports,"PolicyExporter",{enumerable:true,get:function(){return chunkXO3VQYTL_js.c}});Object.defineProperty(exports,"PolicyGenerator",{enumerable:true,get:function(){return chunkXO3VQYTL_js.a}});Object.defineProperty(exports,"PolicyPreview",{enumerable:true,get:function(){return chunkXO3VQYTL_js.b}});Object.defineProperty(exports,"useDefaultPrivacyPolicy",{enumerable:true,get:function(){return chunkZ763UI5U_js.b}});Object.defineProperty(exports,"usePrivacyPolicy",{enumerable:true,get:function(){return chunkZ763UI5U_js.a}});Object.defineProperty(exports,"useAdaptivePolicyWizard",{enumerable:true,get:function(){return chunkUI536RU2_js.a}});Object.defineProperty(exports,"exportDOCX",{enumerable:true,get:function(){return chunkN3MQQUQP_js.d}});Object.defineProperty(exports,"exportHTML",{enumerable:true,get:function(){return chunkN3MQQUQP_js.a}});Object.defineProperty(exports,"exportMarkdown",{enumerable:true,get:function(){return chunkN3MQQUQP_js.b}});Object.defineProperty(exports,"exportPDF",{enumerable:true,get:function(){return chunkN3MQQUQP_js.c}});Object.defineProperty(exports,"DEFAULT_POLICY_SECTIONS",{enumerable:true,get:function(){return chunkLVGT3DLT_js.c}});Object.defineProperty(exports,"DEFAULT_POLICY_VARIABLES",{enumerable:true,get:function(){return chunkLVGT3DLT_js.d}});Object.defineProperty(exports,"createBusinessPolicyTemplate",{enumerable:true,get:function(){return chunkLVGT3DLT_js.e}});Object.defineProperty(exports,"findUnfilledTokens",{enumerable:true,get:function(){return chunkLVGT3DLT_js.a}});Object.defineProperty(exports,"generatePolicyText",{enumerable:true,get:function(){return chunkLVGT3DLT_js.b}});Object.defineProperty(exports,"DEFAULT_DATA_CATEGORIES",{enumerable:true,get:function(){return chunkQ64735OC_js.d}});Object.defineProperty(exports,"assemblePolicy",{enumerable:true,get:function(){return chunkQ64735OC_js.c}});Object.defineProperty(exports,"createDefaultContext",{enumerable:true,get:function(){return chunkQ64735OC_js.e}});Object.defineProperty(exports,"evaluatePolicyCompliance",{enumerable:true,get:function(){return chunkQ64735OC_js.f}});exports.Policy=X;exports.PolicyPage=Q;exports.PolicyProvider=x;exports.usePolicyCompound=Y;
+'use strict';var chunkW7OLQRJP_js=require('./chunk-W7OLQRJP.js'),chunkXO3VQYTL_js=require('./chunk-XO3VQYTL.js'),chunk3GRGYT3P_js=require('./chunk-3GRGYT3P.js'),chunkZ763UI5U_js=require('./chunk-Z763UI5U.js'),chunkHXWHL4BD_js=require('./chunk-HXWHL4BD.js'),chunkN3MQQUQP_js=require('./chunk-N3MQQUQP.js'),chunkLVGT3DLT_js=require('./chunk-LVGT3DLT.js'),chunkQ64735OC_js=require('./chunk-Q64735OC.js');require('./chunk-ZVOIR4QH.js'),require('./chunk-AME4HJR4.js'),require('./chunk-VWED6UTN.js');var chunkRFPLZDIO_js=require('./chunk-RFPLZDIO.js'),react=require('react'),jsxRuntime=require('react/jsx-runtime');var u=react.createContext(null);function X(){let e=react.useContext(u);if(!e)throw new Error("Policy compound components must be wrapped in <Policy.Provider>. Example: <Policy.Provider templates={...}><Policy.Generator /></Policy.Provider>");return e}var x=({templates:e,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:n,children:o})=>{let y=chunkZ763UI5U_js.a({templates:e,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:n}),r=chunkRFPLZDIO_js.b(chunkRFPLZDIO_js.a({},y),{templates:e});return jsxRuntime.jsx(u.Provider,{value:r,children:o})};var J={Provider:x,Generator:chunkXO3VQYTL_js.a,Preview:chunkXO3VQYTL_js.b,Exporter:chunkXO3VQYTL_js.c};var $=({policy:e,className:l,mode:t="shadow",options:i})=>{let p=react.useRef(null);if(react.useEffect(()=>{var g;if(t!=="shadow")return;let o=p.current;if(!o)return;let y=chunkN3MQQUQP_js.a(e,chunkRFPLZDIO_js.a({includeStyles:true,includePrintCSS:true},i)),r=(g=o.shadowRoot)!=null?g:o.attachShadow({mode:"open"});r.innerHTML=y;let v=C=>{var R;let T=C.target;if(!T)return;let h=T.closest("a[href]");if(!h)return;let P=(R=h.getAttribute("href"))!=null?R:"";if(!P.startsWith("#")||P.length<2)return;let S=decodeURIComponent(P.slice(1)),E=r.getElementById(S);E&&(C.preventDefault(),E.scrollIntoView({behavior:"smooth",block:"start"}));};return r.addEventListener("click",v),()=>{r.removeEventListener("click",v),o.shadowRoot&&(o.shadowRoot.innerHTML="");}},[e,i,t]),t==="shadow")return jsxRuntime.jsx("div",{ref:p,"data-ndpr-component":"policy-page",className:l});let n=chunkN3MQQUQP_js.a(e,chunkRFPLZDIO_js.a({includeStyles:false},i));return jsxRuntime.jsx("div",{"data-ndpr-component":"policy-page",className:l,dangerouslySetInnerHTML:{__html:n}})};Object.defineProperty(exports,"AdaptivePolicyWizard",{enumerable:true,get:function(){return chunkW7OLQRJP_js.a}});Object.defineProperty(exports,"PolicyExporter",{enumerable:true,get:function(){return chunkXO3VQYTL_js.c}});Object.defineProperty(exports,"PolicyGenerator",{enumerable:true,get:function(){return chunkXO3VQYTL_js.a}});Object.defineProperty(exports,"PolicyPreview",{enumerable:true,get:function(){return chunkXO3VQYTL_js.b}});Object.defineProperty(exports,"ORG_POLICY_TEMPLATE_REGISTRY",{enumerable:true,get:function(){return chunk3GRGYT3P_js.a}});Object.defineProperty(exports,"createOrgTemplate",{enumerable:true,get:function(){return chunk3GRGYT3P_js.b}});Object.defineProperty(exports,"templateContextFor",{enumerable:true,get:function(){return chunk3GRGYT3P_js.b}});Object.defineProperty(exports,"useDefaultPrivacyPolicy",{enumerable:true,get:function(){return chunkZ763UI5U_js.b}});Object.defineProperty(exports,"usePrivacyPolicy",{enumerable:true,get:function(){return chunkZ763UI5U_js.a}});Object.defineProperty(exports,"useAdaptivePolicyWizard",{enumerable:true,get:function(){return chunkHXWHL4BD_js.a}});Object.defineProperty(exports,"exportDOCX",{enumerable:true,get:function(){return chunkN3MQQUQP_js.d}});Object.defineProperty(exports,"exportHTML",{enumerable:true,get:function(){return chunkN3MQQUQP_js.a}});Object.defineProperty(exports,"exportMarkdown",{enumerable:true,get:function(){return chunkN3MQQUQP_js.b}});Object.defineProperty(exports,"exportPDF",{enumerable:true,get:function(){return chunkN3MQQUQP_js.c}});Object.defineProperty(exports,"DEFAULT_POLICY_SECTIONS",{enumerable:true,get:function(){return chunkLVGT3DLT_js.c}});Object.defineProperty(exports,"DEFAULT_POLICY_VARIABLES",{enumerable:true,get:function(){return chunkLVGT3DLT_js.d}});Object.defineProperty(exports,"createBusinessPolicyTemplate",{enumerable:true,get:function(){return chunkLVGT3DLT_js.e}});Object.defineProperty(exports,"findUnfilledTokens",{enumerable:true,get:function(){return chunkLVGT3DLT_js.a}});Object.defineProperty(exports,"generatePolicyText",{enumerable:true,get:function(){return chunkLVGT3DLT_js.b}});Object.defineProperty(exports,"DEFAULT_DATA_CATEGORIES",{enumerable:true,get:function(){return chunkQ64735OC_js.d}});Object.defineProperty(exports,"assemblePolicy",{enumerable:true,get:function(){return chunkQ64735OC_js.c}});Object.defineProperty(exports,"createDefaultContext",{enumerable:true,get:function(){return chunkQ64735OC_js.e}});Object.defineProperty(exports,"evaluatePolicyCompliance",{enumerable:true,get:function(){return chunkQ64735OC_js.f}});exports.Policy=J;exports.PolicyPage=$;exports.PolicyProvider=x;exports.usePolicyCompound=X;

package/dist/policy.mjs

@@ -1,2 +1,2 @@
 "use client";
-export{a as AdaptivePolicyWizard}from'./chunk-BNHQFZHL.mjs';import {c,b,a}from'./chunk-TMXK4QKK.mjs';export{c as PolicyExporter,a as PolicyGenerator,b as PolicyPreview}from'./chunk-TMXK4QKK.mjs';import {a as a$1}from'./chunk-VYAL2TGT.mjs';export{b as useDefaultPrivacyPolicy,a as usePrivacyPolicy}from'./chunk-VYAL2TGT.mjs';export{a as useAdaptivePolicyWizard}from'./chunk-O6CUBNXK.mjs';import {a as a$3}from'./chunk-AOHKVFAS.mjs';export{d as exportDOCX,a as exportHTML,b as exportMarkdown,c as exportPDF}from'./chunk-AOHKVFAS.mjs';export{c as DEFAULT_POLICY_SECTIONS,d as DEFAULT_POLICY_VARIABLES,e as createBusinessPolicyTemplate,a as findUnfilledTokens,b as generatePolicyText}from'./chunk-Y3MKMAFQ.mjs';export{d as DEFAULT_DATA_CATEGORIES,c as assemblePolicy,e as createDefaultContext,f as evaluatePolicyCompliance}from'./chunk-RMQ7OLNY.mjs';import'./chunk-ITCY2Z66.mjs';import'./chunk-SFGW37LE.mjs';import'./chunk-DBZSN4WP.mjs';import {b as b$1,a as a$2}from'./chunk-ZJYULEER.mjs';import {createContext,useContext,useRef,useEffect}from'react';import {jsx}from'react/jsx-runtime';var u=createContext(null);function Y(){let o=useContext(u);if(!o)throw new Error("Policy compound components must be wrapped in <Policy.Provider>. Example: <Policy.Provider templates={...}><Policy.Generator /></Policy.Provider>");return o}var x=({templates:o,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:a,children:e})=>{let y=a$1({templates:o,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:a}),r=b$1(a$2({},y),{templates:o});return jsx(u.Provider,{value:r,children:e})};var X={Provider:x,Generator:a,Preview:b,Exporter:c};var Q=({policy:o,className:l,mode:t="shadow",options:i})=>{let p=useRef(null);if(useEffect(()=>{var g;if(t!=="shadow")return;let e=p.current;if(!e)return;let y=a$3(o,a$2({includeStyles:true,includePrintCSS:true},i)),r=(g=e.shadowRoot)!=null?g:e.attachShadow({mode:"open"});r.innerHTML=y;let v=h=>{var A;let C=h.target;if(!C)return;let T=C.closest("a[href]");if(!T)return;let P=(A=T.getAttribute("href"))!=null?A:"";if(!P.startsWith("#")||P.length<2)return;let R=decodeURIComponent(P.slice(1)),E=r.getElementById(R);E&&(h.preventDefault(),E.scrollIntoView({behavior:"smooth",block:"start"}));};return r.addEventListener("click",v),()=>{r.removeEventListener("click",v),e.shadowRoot&&(e.shadowRoot.innerHTML="");}},[o,i,t]),t==="shadow")return jsx("div",{ref:p,"data-ndpr-component":"policy-page",className:l});let a=a$3(o,a$2({includeStyles:false},i));return jsx("div",{"data-ndpr-component":"policy-page",className:l,dangerouslySetInnerHTML:{__html:a}})};export{X as Policy,Q as PolicyPage,x as PolicyProvider,Y as usePolicyCompound};
+export{a as AdaptivePolicyWizard}from'./chunk-ATFUSHC2.mjs';import {c,b,a}from'./chunk-TMXK4QKK.mjs';export{c as PolicyExporter,a as PolicyGenerator,b as PolicyPreview}from'./chunk-TMXK4QKK.mjs';export{a as ORG_POLICY_TEMPLATE_REGISTRY,b as createOrgTemplate,b as templateContextFor}from'./chunk-UKLU6BQF.mjs';import {a as a$1}from'./chunk-VYAL2TGT.mjs';export{b as useDefaultPrivacyPolicy,a as usePrivacyPolicy}from'./chunk-VYAL2TGT.mjs';export{a as useAdaptivePolicyWizard}from'./chunk-2MIQXECH.mjs';import {a as a$3}from'./chunk-AOHKVFAS.mjs';export{d as exportDOCX,a as exportHTML,b as exportMarkdown,c as exportPDF}from'./chunk-AOHKVFAS.mjs';export{c as DEFAULT_POLICY_SECTIONS,d as DEFAULT_POLICY_VARIABLES,e as createBusinessPolicyTemplate,a as findUnfilledTokens,b as generatePolicyText}from'./chunk-Y3MKMAFQ.mjs';export{d as DEFAULT_DATA_CATEGORIES,c as assemblePolicy,e as createDefaultContext,f as evaluatePolicyCompliance}from'./chunk-RMQ7OLNY.mjs';import'./chunk-ITCY2Z66.mjs';import'./chunk-SFGW37LE.mjs';import'./chunk-DBZSN4WP.mjs';import {b as b$1,a as a$2}from'./chunk-ZJYULEER.mjs';import {createContext,useContext,useRef,useEffect}from'react';import {jsx}from'react/jsx-runtime';var u=createContext(null);function X(){let e=useContext(u);if(!e)throw new Error("Policy compound components must be wrapped in <Policy.Provider>. Example: <Policy.Provider templates={...}><Policy.Generator /></Policy.Provider>");return e}var x=({templates:e,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:n,children:o})=>{let y=a$1({templates:e,adapter:l,storageKey:t,useLocalStorage:i,initialPolicy:p,onGenerate:n}),r=b$1(a$2({},y),{templates:e});return jsx(u.Provider,{value:r,children:o})};var J={Provider:x,Generator:a,Preview:b,Exporter:c};var $=({policy:e,className:l,mode:t="shadow",options:i})=>{let p=useRef(null);if(useEffect(()=>{var g;if(t!=="shadow")return;let o=p.current;if(!o)return;let y=a$3(e,a$2({includeStyles:true,includePrintCSS:true},i)),r=(g=o.shadowRoot)!=null?g:o.attachShadow({mode:"open"});r.innerHTML=y;let v=C=>{var R;let T=C.target;if(!T)return;let h=T.closest("a[href]");if(!h)return;let P=(R=h.getAttribute("href"))!=null?R:"";if(!P.startsWith("#")||P.length<2)return;let S=decodeURIComponent(P.slice(1)),E=r.getElementById(S);E&&(C.preventDefault(),E.scrollIntoView({behavior:"smooth",block:"start"}));};return r.addEventListener("click",v),()=>{r.removeEventListener("click",v),o.shadowRoot&&(o.shadowRoot.innerHTML="");}},[e,i,t]),t==="shadow")return jsx("div",{ref:p,"data-ndpr-component":"policy-page",className:l});let n=a$3(e,a$2({includeStyles:false},i));return jsx("div",{"data-ndpr-component":"policy-page",className:l,dangerouslySetInnerHTML:{__html:n}})};export{J as Policy,$ as PolicyPage,x as PolicyProvider,X as usePolicyCompound};

package/dist/presets-dsr.d.mts

@@ -85,6 +85,31 @@ export declare interface NDPRSubjectRightsProps {
         error?: unknown;
         response?: Response;
     }) => void;
+    /**
+     * Called when a `submitTo` POST succeeds (2xx response). Receives the
+     * `Response` object, the submitted `DSRFormSubmission` payload, and the
+     * parsed JSON body if the server returned valid JSON. Use this to
+     * display a server-generated reference number, redirect the user, or
+     * trigger analytics.
+     *
+     * The `body` field is `undefined` if the response had no body or the
+     * body was not valid JSON. It is typed `unknown` to force consumers to
+     * narrow it themselves before reading fields.
+     *
+     * @example
+     *   <NDPRSubjectRights
+     *     submitTo="/api/dsr"
+     *     onSubmitSuccess={({ response, data, body }) => {
+     *       const ref = (body as { referenceId?: string })?.referenceId;
+     *       if (ref) router.push(`/dsr-confirmation?ref=${ref}`);
+     *     }}
+     *   />
+     */
+    onSubmitSuccess?: (ctx: {
+        response: Response;
+        data: DSRFormSubmission;
+        body?: unknown;
+    }) => void;
 }
 
 /**

package/dist/presets-dsr.d.ts

@@ -85,6 +85,31 @@ export declare interface NDPRSubjectRightsProps {
         error?: unknown;
         response?: Response;
     }) => void;
+    /**
+     * Called when a `submitTo` POST succeeds (2xx response). Receives the
+     * `Response` object, the submitted `DSRFormSubmission` payload, and the
+     * parsed JSON body if the server returned valid JSON. Use this to
+     * display a server-generated reference number, redirect the user, or
+     * trigger analytics.
+     *
+     * The `body` field is `undefined` if the response had no body or the
+     * body was not valid JSON. It is typed `unknown` to force consumers to
+     * narrow it themselves before reading fields.
+     *
+     * @example
+     *   <NDPRSubjectRights
+     *     submitTo="/api/dsr"
+     *     onSubmitSuccess={({ response, data, body }) => {
+     *       const ref = (body as { referenceId?: string })?.referenceId;
+     *       if (ref) router.push(`/dsr-confirmation?ref=${ref}`);
+     *     }}
+     *   />
+     */
+    onSubmitSuccess?: (ctx: {
+        response: Response;
+        data: DSRFormSubmission;
+        body?: unknown;
+    }) => void;
 }
 
 /**

package/dist/presets-dsr.js

@@ -1,2 +1,2 @@
 "use client";
-'use strict';var chunkRXZFYBUJ_js=require('./chunk-RXZFYBUJ.js');require('./chunk-W47OSMT6.js'),require('./chunk-UXUMYP4L.js'),require('./chunk-AME4HJR4.js'),require('./chunk-RFPLZDIO.js');Object.defineProperty(exports,"NDPRSubjectRights",{enumerable:true,get:function(){return chunkRXZFYBUJ_js.a}});
+'use strict';var chunkXS3Z4UT7_js=require('./chunk-XS3Z4UT7.js');require('./chunk-W47OSMT6.js'),require('./chunk-UXUMYP4L.js'),require('./chunk-AME4HJR4.js'),require('./chunk-RFPLZDIO.js');Object.defineProperty(exports,"NDPRSubjectRights",{enumerable:true,get:function(){return chunkXS3Z4UT7_js.a}});

package/dist/presets-dsr.mjs

@@ -1,2 +1,2 @@
 "use client";
-export{a as NDPRSubjectRights}from'./chunk-SJRIOZ4K.mjs';import'./chunk-XJO4DH3L.mjs';import'./chunk-EWVK45Z3.mjs';import'./chunk-SFGW37LE.mjs';import'./chunk-ZJYULEER.mjs';
+export{a as NDPRSubjectRights}from'./chunk-EFIWANHF.mjs';import'./chunk-XJO4DH3L.mjs';import'./chunk-EWVK45Z3.mjs';import'./chunk-SFGW37LE.mjs';import'./chunk-ZJYULEER.mjs';

package/dist/presets-policy.d.mts

@@ -39,6 +39,35 @@ export declare interface NDPRPrivacyPolicyProps {
     onComplete?: (policy: PrivacyPolicy) => void;
     classNames?: Record<string, string>;
     unstyled?: boolean;
+    /**
+     * Pre-fill the policy wizard with a sector-specific starter template.
+     *
+     * Pass one of `'saas' | 'ecommerce' | 'school' | 'healthcare' |
+     * 'procurement'` and the wizard opens already populated with the data
+     * categories, lawful-basis defaults, sensitive-data / children /
+     * cross-border / automated-decisions flags that org type usually needs.
+     * The user can still flip every flag and rewrite every section.
+     *
+     * @example
+     *   <NDPRPrivacyPolicy
+     *     template="healthcare"
+     *     templateOverrides={{ orgName: 'Lagos Heart Centre' }}
+     *   />
+     *
+     * @see templateContextFor in `/server` or `/core` for the underlying
+     *   factory if you'd rather build the context yourself.
+     */
+    template?: OrgPolicyTemplateId;
+    /**
+     * Organisation-level overrides applied on top of the chosen template.
+     * Ignored when `template` is unset.
+     */
+    templateOverrides?: OrgPolicyTemplateOverrides;
+    /**
+     * Pass a fully-constructed `TemplateContext` to skip the template
+     * lookup entirely. Takes precedence over `template` if both are set.
+     */
+    initialContext?: TemplateContext;
 }
 
 /**
@@ -65,6 +94,48 @@ declare interface OrganizationInfo {
     ndpcRegistrationNumber?: string;
 }
 
+/**
+ * Org-specific privacy-policy templates — pre-filled `TemplateContext`
+ * factories for the most common Nigerian app shapes.
+ *
+ * Each template returns a fully-populated `TemplateContext` with:
+ * - industry set to the matching `Industry` value
+ * - the data categories the sector typically collects (selected: true)
+ * - the processing purposes that match the business model
+ * - sensitive-data / children / cross-border / automated-decisions flags
+ *   set to the defaults that org type usually needs (a school will have
+ *   children data, a hospital will have sensitive data, etc.)
+ *
+ * Templates are guidance starters. The wizard still walks the user through
+ * every step — they can flip any flag, add/remove categories, or rewrite
+ * any section before the policy is finalised. The legal-notice footer the
+ * toolkit ships everywhere applies to the generated output.
+ *
+ * @example
+ *   import { templateContextFor } from '@tantainnovative/ndpr-toolkit/server';
+ *   const ctx = templateContextFor('ecommerce', { orgName: 'Acme NG' });
+ *   const draft = assemblePolicy(ctx);
+ */
+
+/** Identifiers for the bundled org templates. */
+declare type OrgPolicyTemplateId = 'saas' | 'ecommerce' | 'school' | 'healthcare' | 'procurement';
+
+/** Optional overrides applied on top of a template's defaults. */
+declare interface OrgPolicyTemplateOverrides {
+    /** Organisation name (e.g. "Acme Nigeria Ltd"). Default: empty. */
+    orgName?: string;
+    /** Public website URL. */
+    website?: string;
+    /** Privacy contact email. */
+    privacyEmail?: string;
+    /** Postal address. */
+    address?: string;
+    /** DPO name. Required for DCPMI under NDPA Section 32. */
+    dpoName?: string;
+    /** DPO email. Required for the NDPC breach-notification contact. */
+    dpoEmail?: string;
+}
+
 /** Organisation size tiers — affects complexity of generated language. */
 declare type OrgSize = 'startup' | 'midsize' | 'enterprise';