Contact
The Catalan Data Protection Authority has issued its Guidelines on Privacy by design and by default to make it easier for developers to create products and services complying with data regulation from the very beginning.
In particular, “privacy by design” entails taking a privacy perspective already in the designing phase of any product or service and “privacy by default” requires the implementation of all those technical and organizational measures to guarantee that by default only personal data which are necessary for each specific purpose of the processing are processed.
Article 25 of the General Data Protection Regulation expressly foresees the duty to comply with data protection by design and by default.