> ## Documentation Index
> Fetch the complete documentation index at: https://docs.responsibleailabs.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# GDPR

> AI content को GDPR के against check करें। Lawful basis, data subject rights, transparency, DPO requirements, cross-border transfers, और data minimization को cover करता है।

<Info>
  **Endpoint:** `POST /railscore/v1/compliance/check` | **Framework code:** `gdpr` | **Credits:** 5.0 प्रति call
</Info>

General Data Protection Regulation (EU 2016/679) यूरोपीय संघ में व्यक्तियों के personal data की processing को regulate करता है। Compliance check, AI-generated content को GDPR requirements के against evaluate करता है और remediation guidance के साथ clause-level findings लौटाता है।

## Supported checks

| क्षेत्र                | Articles     | क्या check होता है                                                   |
| ---------------------- | ------------ | -------------------------------------------------------------------- |
| Lawful basis           | Art. 6, 9    | Processing के लिए valid legal basis बताया गया है या नहीं             |
| Transparency           | Art. 12-14   | Data subjects को दी गई information                                   |
| Data subject rights    | Art. 15-22   | Access, rectification, erasure, portability का अधिकार                |
| Data minimization      | Art. 5(1)(c) | Processing आवश्यक चीज़ों तक सीमित है या नहीं                         |
| Purpose limitation     | Art. 5(1)(b) | Data specified, explicit purposes के लिए collect किया गया है या नहीं |
| Cross-border transfers | Art. 44-49   | Adequacy decisions, SCCs, BCRs                                       |
| DPO requirements       | Art. 37-39   | Data Protection Officer की obligations                               |
| DPIA                   | Art. 35      | Data Protection Impact Assessment की requirements                    |

## Request

```bash theme={null}
curl -X POST https://api.responsibleailabs.ai/railscore/v1/compliance/check \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer YOUR_RAIL_API_KEY" \
  -d '{
    "content": "We collect user browsing behavior to personalize product recommendations.",
    "frameworks": ["gdpr"],
    "context": "E-commerce chatbot serving EU customers"
  }'
```

## Response

```json theme={null}
{
  "result": {
    "overall_compliant": false,
    "frameworks": {
      "gdpr": {
        "compliant": false,
        "issues": [
          {
            "clause": "Article 6 — Lawful basis for processing",
            "description": "No legal basis stated for behavioral data collection. Consent or legitimate interest must be identified.",
            "severity": "high",
            "remediation": "Explicitly state the legal basis (e.g., Art. 6(1)(a) consent or Art. 6(1)(f) legitimate interest) and document the basis in your records of processing."
          },
          {
            "clause": "Article 13 — Information to be provided",
            "description": "No mention of data retention period or data subject rights.",
            "severity": "medium",
            "remediation": "Disclose the retention period, data subject rights (access, erasure, portability), and contact details for the DPO."
          }
        ]
      }
    }
  },
  "credits_consumed": 5.0
}
```

## अन्य frameworks के साथ combine करें

एक ही call में GDPR के साथ EU AI Act check करें:

```bash theme={null}
curl -X POST https://api.responsibleailabs.ai/railscore/v1/compliance/check \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer YOUR_RAIL_API_KEY" \
  -d '{
    "content": "Our AI system classifies loan applicants by credit risk.",
    "frameworks": ["gdpr", "eu_ai_act"],
    "context": "Automated lending platform in the EU"
  }'
```

Multi-framework checks 8.0 credits (2-3 frameworks) या 10.0 credits (4-5 frameworks) cost करती हैं।

<Note>
  Consent lifecycle management, DPIA automation, DPO dashboard, और cross-border transfer assessment के लिए dedicated GDPR endpoints development के under हैं।
</Note>
