Data protection by design: Organizational integration

Abstract

Firms perform the processing of physical personal data and are obliged to protect them according to the Acts. In the European Union, the General Regulation for Data Protection (GDPR) obliges firms to be proactive in the protection of the personal data they process, through data protection from the design. In this research, a group of technical and organizational measures to include in processing, under the focus of data protection from the design is determined from the definition of the processes in which data are processed. These activities, realized by making use of different firm’s profiles, promote the need to develop a proper organizational integration amongst participants. The activities done by different profiles at firms promote the need to develop an organizational integration amongst participants, activities performed by different agents, results interchanged and common products used.