Privacy by Design


Privacy by Design is a proactive practice that puts privacy first in each step of designing a new system. This concept supports the view that privacy cannot be maintained solely through compliance with legislation and regulatory frameworks. Instead, proactive privacy is the ideal mode of operation.

Dr. Ann Cavoukian, Ontario’s Information and Privacy Commissioner, developed the concept of Privacy by Design in 1990. Dr. Cavoukian wanted to address privacy in the ever-growing Information and Communication Technologies, and in large-scale networked data systems. The Privacy by Design framework contains seven guiding principles.


(Incorporated in to Inflection Principle 6)

  1. “Proactive not Reactive; Preventative not Remedial.”
  2. “Privacy as the Default Setting.”
  3. “Privacy Embedded into Design.” (Inflection Principle 2)
  4. “Full Functionality – Positive-Sum, not Zero-Sum.”
  5. “End-to-End Security – Full Lifecycle Protection.” (Inflection Principle 5)
  6. “Visibility and Transparency – Keep it Open.” (Inflection Principle 1)
  7. “Respect for User Privacy – Keep it User-Centric.” (Inflection Principle 7)

Further Reading