Privacy by design
What is ‘privacy by design’?
Privacy by design is an approach to projects that promotes privacy and data protection compliance from the start. Unfortunately, these issues are often bolted on as an after-thought or ignored altogether. This approach helps Kent comply with its Data Protection Act obligations.
The ICO encourages organisations to ensure that privacy and data protection is a key consideration in the early stages of any project, and then throughout its lifecycle. For example when:
- building new IT systems for storing or accessing personal data;
- developing legislation, policy or strategies that have privacy implications;
- embarking on a data sharing initiative;
- or using data for new purposes.
Privacy (Data Protection) Impact Assessments
Privacy Impact Assessments (PIAs) are an integral part of taking a privacy by design approach. A PIA can reduce the risks of harm to individuals through the misuse of their personal information. It can also help you to design more efficient and effective processes for handling personal data. Please use the following template to record your assessment:
This advice is based on guidance provided by the Information Commissioner. More information can be found on their website.
If you have any questions about this or other Data Protection matters please contact the University’s Information Compliance Officer.