Have a privacy program and demonstrate accountability for its implementation

Home / Have a privacy program and demonstrate accountability for its implementation

Have a privacy program and demonstrate accountability for its implementation

The NDPA imposes an active obligation on organisations to have a privacy program in respect of the personal information they process for their business activities. This obligation carries with it a duty to be accountable for the proactive implementation of the privacy program by ensuring compliance with the principles and standards of data protection established under the Law. Examples of how to demonstrate accountability are;

Having a designated officer within the organisation responsible for privacy compliance or by engaging an external data protection compliance organisation (DPCO).
Having a Privacy Policy that sets out the information handling practices of the organisation.
Having a designated point of contact for enquiries by the public on how their information is handled by the organisation.