Lawfulness, fairness and transparency
Data should be processed lawfully, fairly and in a transparent manner.
Collected for specified, explicit and legitimate purposes.
Adequate, relevant and limited to what is necessary.
Accurate and, where necessary, kept up-to-date.
Retained only for as long as necessary.
Integrity and confidentiality
Processed in an appropriate manner to maintain security.