Data Protection by Design

Privacy by design is an approach that promotes privacy and data protection compliance from the early stages of planning a process or project. The benefits of this approach include the identification of privacy issues at an early stage and increased awareness of privacy and data protection. The General Data Protection Regulations (GDPR) make privacy by design an express legal requirement.

Ensure that privacy and data protection are key considerations whenever you establish or amend processes that deal with the processing of personal data.


This interim advice is based on resources from the Information Commissioner’s Office (ICO) website. Although every effort has been made to ensure the accuracy of this advice, SDCEP takes no responsibility for inaccuracies or omissions and does not accept responsibility for any loss, damage or expense resulting from the use of this information. Further advice on complying with GDPR can be found on the ICO website and via the EU GDPR learning resource. Your indemnity organisation may also provide information and resources to help you comply and be able to advise you regarding particular issues that may arise from GDPR implementation.