Compliance Automation Suite
Product ID: compliance-automation-suite
Version: 1.0.0
Price: $89 USD
Author: Datanest Digital
Category: Enterprise
Overview
The Compliance Automation Suite provides production-ready tooling for organizations operating
on Databricks and Azure that must satisfy GDPR, SOC 2 Type II, ISO 27001, and the EU NIS2
Directive. Instead of manually assembling evidence and cross-referencing spreadsheets before
every audit cycle, this suite automates the heavy lifting: continuous control verification,
evidence collection, gap analysis, and audit-readiness reporting.
Every script is designed as a Databricks notebook or standalone Python module so it slots
directly into existing lakehouse architectures. The control mappings translate regulatory
language into concrete technical controls you can verify programmatically.
What's Included
Control Mappings (mappings/)
| File | Description |
|---|---|
gdpr_databricks_controls.md |
GDPR articles mapped to Databricks technical controls |
soc2_azure_controls.md |
SOC 2 Trust Service Criteria mapped to Azure services |
iso27001_controls.md |
ISO 27001:2022 Annex A controls in spreadsheet format |
nis2_checklist.md |
NIS2 Directive (EU 2022/2555) compliance checklist |
Audit Scripts (scripts/)
| File | Description |
|---|---|
access_control_audit.py |
Audit workspace ACLs, group memberships, token lifetimes |
encryption_verification.py |
Verify encryption at rest, in transit, and key management |
data_retention_check.py |
Check data lifecycle against retention policies |
audit_log_validation.py |
Validate audit log completeness and integrity |
network_security_check.py |
Assess network security posture and segmentation |
GDPR Toolkit (gdpr/)
| File | Description |
|---|---|
dsr_handler.py |
Data Subject Request handler (access, portability, erasure) |
consent_tracking.py |
Consent lifecycle tracking integration pattern |
dpia_template.md |
Data Protection Impact Assessment template |
ropa_generator.py |
Records of Processing Activities generator |
Templates (templates/)
| File | Description |
|---|---|
soc2_evidence_binder.md |
SOC 2 evidence binder organized by TSC |
audit_preparation.md |
30-day countdown audit preparation guide |
Dashboards (dashboards/)
| File | Description |
|---|---|
compliance_dashboard.sql |
Real-time compliance posture SQL dashboard |
Prerequisites
- Databricks Workspace (Premium or Enterprise tier recommended)
- Azure Subscription with Contributor or Reader access for resource enumeration
-
Python 3.9+ with the following packages:
databricks-sdk >= 0.20.0azure-identity >= 1.15.0azure-mgmt-resource >= 23.0.0-
pyspark(available by default in Databricks Runtime) cryptography >= 41.0.0requests >= 2.31.0
- Unity Catalog enabled (for fine-grained access auditing)
- Audit Log Delivery configured to a Delta table or storage account
Quick Start
1. Deploy Control Mappings
Review the mappings in mappings/ to understand which technical controls satisfy each
regulatory requirement. Use these as the foundation for your control matrix.
2. Run Audit Scripts
# In a Databricks notebook
%run ./scripts/access_control_audit
auditor = AccessControlAuditor(workspace_url="https://adb-xxxx.azuredatabricks.net")
report = auditor.run_full_audit()
report.to_delta("compliance.access_control_audit_results")
3. Automate with Workflows
Schedule each audit script as a Databricks Workflow job on a cadence that matches your
compliance requirements:
-
Daily:
access_control_audit.py,audit_log_validation.py -
Weekly:
encryption_verification.py,network_security_check.py -
Monthly:
data_retention_check.py
4. Build the Dashboard
Execute dashboards/compliance_dashboard.sql in Databricks SQL to create a real-time
compliance posture dashboard that aggregates findings from all audit scripts.
5. Handle DSRs
from gdpr.dsr_handler import DSRHandler
handler = DSRHandler(catalog="main", schemas=["production", "analytics"])
results = handler.handle_access_request(subject_id="user@example.com")
handler.export_portable_copy(results, format="json")
Architecture
+-------------------+ +---------------------+ +------------------+
| Audit Scripts |---->| Delta Lake Tables |---->| SQL Dashboard |
| (Scheduled Jobs) | | (Findings Store) | | (Real-time) |
+-------------------+ +---------------------+ +------------------+
| |
v v
+-------------------+ +---------------------+
| Control Mappings | | Evidence Binder |
| (Gap Analysis) | | (Audit Artifacts) |
+-------------------+ +---------------------+
Compliance Frameworks Covered
| Framework | Status | Notes |
|---|---|---|
| GDPR (EU 2016/679) | Full | Articles 5-49 mapped to technical controls |
| SOC 2 Type II | Full | All 5 Trust Service Criteria covered |
| ISO 27001:2022 | Full | Annex A controls with implementation guidance |
| NIS2 (EU 2022/2555) | Full | Applicable from October 2024 enforcement |
Customization
All scripts accept configuration via environment variables or a compliance_config.json
file placed in the workspace root. Key settings:
{
"workspace_url": "https://adb-xxxx.azuredatabricks.net",
"catalog": "main",
"findings_schema": "compliance",
"retention_policy_table": "compliance.retention_policies",
"alert_webhook_url": "https://hooks.slack.com/services/...",
"max_token_lifetime_days": 90,
"required_encryption_algorithm": "AES-256",
"audit_log_retention_days": 365
}
Related Products
- Unity Catalog Migration Kit — Migrate to Unity Catalog governance
- Azure Cost Guardian — Monitor and optimize Databricks and Azure spending
- Executive Data Strategy Toolkit — Strategic frameworks for data leadership
This is 1 of 20 resources in the Datanest Platform Pro toolkit. Get the complete [Compliance Automation Suite] with all files, templates, and documentation for $89.
Or grab the entire Datanest Platform Pro bundle (20 products) for $199 — save 30%.
Top comments (0)