Organizations should demonstrate compliance with all fair information principles required by law. The accountability principle aims to move privacy from theory to practice by requiring that the processes underlying privacy policies and procedures are implemented appropriately and effectively. Accountability measures include:

  • Documenting personal data breaches (including those not requiring notification),
  • Maintaining a record of processing activities,
  • Conducting Data Protection Impact Assessments and
  • Implementing privacy` by design and by default approach.