How I did What

7 Principles Lawfulness, Fairness & Transparency - Legal  Purppose limitation  Data minimisation - only ncecessary data collected Accuracy - accurate and corrected Storage limitation - Keep it for the required time mentioned in transparency Security - Fundamental  Accountability - Responsible to uphold the principles 12  Steps Data inventory - Creat  a list of all personal data collected. Data Expiration- Delete all personal data after the purpose is served.  Consent - Get consent before collecting personal data Individual rights - People have the right to ask question. Answer in 30 days Data transfers - Adequate security while transfering Transparency - Inform what data collected, what processing, purpose etc (Privacy/cookie notice) Awareness & Training - Train all staff about data protection Data breaches - If uninteded breach happens... inform authorities in 72 hours Data protection impact assessment - High risk processes Data protection officer ...