GDPR Core Principles

• Lawfulness, fairness, and transparency: Data must be processed lawfully, fairly, and transparently.
• Purpose limitation: Data must be collected for specified, explicit, and legitimate purposes.
• Data minimization: Only necessary data should be processed.
• Accuracy: Data must be accurate and kept up to date.
• Storage limitation: Data should not be kept longer than necessary.
• Integrity and confidentiality: Data must be processed securely.
• Accountability: The controller must demonstrate GDPR compliance.