“Privacy by design” as a phrase may seem like common sense. After all, who on Earth would want to have their data monitored or outright stolen? Well, no one WANTS that to happen, but you would be surprised how few organisations are pro-actively thinking about that when designing or implementing policies/procedures.
The Privacy by Design framework dictates that privacy and data protection are embedded throughout the entire life cycle of technologies, from the early design stage through deployment, use and ultimate disposal or disposition. The foundational concept is that organizations need to build privacy directly into technology, systems and practices at the design phase, thereby ensuring the existence of privacy and appropriate controls from the outset. It’s a key recommendation of the upcoming EU GDPR.