INTERNATIONAL REVIEW OF HOW WELL ORGANISATIONS HAVE IMPLEMENTED PRIVACY ACCOUNTABILITY INTO THEIR OWN INTERNAL PRIVACY POLICIES

Privacy Accountability has become recognised globally as a key principle of data protection. Accountability essentially requires organisations to take certain steps to implement applicable data protection rules and requirements, and to be able to demonstrate how these have been incorporated into their own internal privacy policies and programmes.

With this in mind, the Global Privacy Enforcement Network (“GPEN”) has coordinated the sixth privacy review (the “Sweep”) which is based on the theme of accountability.

The Gibraltar Regulatory Authority, as the Information Commissioner is, along with twenty other GPEN members from around the world, in the process of conducting the Sweep, which aims to assess how the concept of accountability has been incorporated into everyday business practices.