The UK Information Commissioner’s Office Has Introduced the Accountability Framework

Accountability is one of the key principles in the General Data Protection Regulation and in the Member States laws. It means organizations are responsible for complying with the legislation and should be able to demonstrate compliance.

The UK Information Commissioner’s Office (ICO) has published its Accountability Framework which can help organizations to comply with data protection laws. It can be accessed by clicking here.It is divided into 10 categories:

Leadership and oversight

Training and awareness

Transparency

Contracts and data sharing

Records management and security

Policies and procedures

Individuals’ rights

Records of processing and lawful basis

Risks and data protection impact assessments

Breach response and monitoring

The ICO has also introduced the accountability self-assessment which can help organizations determine to what extent they meet the ICO’s expectations in relation to accountability. It can be accessed here. At the end of the self-assessment the respondents will receive a report. The self-assessment must be taken in one go, and it takes about 50 minutes to complete it.

Organizations can provide their feedback here as the Framework has been launched as a beta product and they can take part in future events by clicking here.

The press release is available here.

Photo by Isaque Pereira from Pexels.