GovSCH Schema Descriptions (Computed Structural Patterns)

The “Executive Orders Schema” within GovSCH provides a standardized, machine-readable structure for capturing the essential elements of U.S. presidential executive orders. Its design reflects the consistent components observed across multiple orders while ensuring flexibility for varying formats and content (see Figure 1 and Table 4).

The “Framework Schema” within GovSCH provides a standardized, machine-readable structure for capturing the essential elements of cybersecurity and risk management frameworks, such as the NIST Risk Management Framework (SP 800‑37) and DoD RMF (DoDI 8510.01). Its design reflects these frameworks’ layered, process-driven nature, while ensuring adaptability for future versions or similar governance instruments (see Figure 2 and Table 5).

The “Regulation Schema” within GovSCH provides a comprehensive, machine-readable structure for capturing the essential components of international data protection and privacy laws, such as the General Data Protection Regulation (GDPR) in the European Union and United Kingdom, the Lei Geral Proteção de Dados (LGPD) in Brazil, the Personal Information Protection Law (PIPL) in China, and similar instruments. This schema captures the breadth of regulatory content, legal authority, principles, rights, obligations, and enforcement mechanisms, while maintaining a clear and logical hierarchy for easy use in compliance, governance, and automation contexts (see Figure 3 and Table 6).