Data Privacy Management Principles v2024
Data Privacy Management Principles
Framework data extracted from the Secure Controls Framework (SCF) v2025.4 Set Theory Relationship Mapping (STRM) files, licensed under CC BY-ND 4.0 . Attribution required per license terms.
83 All
1 — Management (10 principles)
2 — Consent (8 principles)
3 — Collection (4 principles)
4 — Notice (2 principles)
5 — Use, Retention and Disposal (16 principles)
5.0Use Limitation
5.1Record of Processing Activities
5.2Data Flow Documentation
5.3Asset Identification
5.4Records Retention
5.5Secure Disposal
5.6Processing Location Restrictions
5.7Data Portability
5.8Disclosure Accounting
5.9Data Accuracy
5.11Quality Assurance
5.12Secure Data Processing
5.13Data Provenance
5.14Authorization Adjustment
5.15Flaw Identification and Correction
5.16Bias Evaluation
6 — Access (7 principles)
7 — Security (13 principles)
7.0Security Safeguards
7.1Privacy in Enterprise Architecture
7.2Encryption at Rest and in Transit
7.3Physical Security
7.4Embedded Technology Privacy
7.5System Upgrade or Retirement
7.6Personnel Management
7.7Rules of Behavior
7.8Employee Sanctions
7.9Workforce Development
7.11Information Assurance Testing
7.12Secure Configuration Management
7.13Security Event Monitoring