Principles & Requirements

Principles of GDPR

  1. Lawfulness, fair, transparent
  2. Purpose limitation
  3. Data minimisation
  4. Accuracy
  5. Storage limitation
  6. Integrity and confidentiality
  7. Accountability

Requirements of GDPR

  1. Ensure lawful basis for processing
  2. Communication with data subjects
  3. Rights of data subjects
  4. Documentation
  5. Breach notification
  6. Security measures
  7. Appoint a DPO
  8. Ensure data protection by design and by default
  9. Conduct a Data Protection Impact Assessment
  10. Appointment of representatives
  11. Follow the rules for transfer of personal data outside the European Economic Area