What does “lawfulness, fairness and transparency” mean under EU Data Protection law?
There are seven basic data protection principles under EU data protection law. The principles lie at the heart of the law and, although they don’t give hard and fast rules, they embody the spirit of the regulatory framework. Therefore, compliance with the principles is a fundamental building block to any good data protection practice. The seven principles are:
- Lawfulness, fairness and transparency
- Purpose limitation
- Data minimization
- Accuracy
- Storage limitation
- Integrity and confidentiality (security)
- Accountability
The first principle is the principle of “lawfulness, fairness and transparency” (GDPR Article 5 (1) (a)).
Article 5 of GDPR
(1) Personal data shall be:
(a) processed lawfully, fairly and in a transparent manner in relation to the data subject (‘lawfulness, fairness and transparency’);
[See also Articles 6 and 9 of GDPR]