Privacy by Design & Default
Privacy by Design means that organisations need to consider privacy at the initial design stages and throughout the complete development process of new products, processes or services that involve processing personal data.
Privacy by Default means that when a system or service includes choices for the individual on how much personal data he/she shares with others, the default settings should be the most privacy friendly ones.
It has always been good practice to adopt privacy by design as a default approach; privacy by design and the minimisation of data have always been implicit requirements of the data protection principles. However, the GDPR enshrines both the principle of ‘privacy by design’ and the principle of ‘privacy by default’ in law. This means that service settings must be automatically privacy friendly, and requires that the development of services and products takes account of privacy considerations from the outset.
What is UCC doing about this?
Privacy by design and default is being considered as part of the overall UCC GDPR project. Guidance will be issued in due course. In the meantime if you have any queries, please contact Catriona O’Sullivan, Information Compliance Officer on (021) 4903949 or email: firstname.lastname@example.org