​

The Main Principles of Personal Data Protection

The First Principle: Responsibility.
The Second Principle: Transparency.
The Third Principle: Choice and Consent.
The Fourth Principle: Limiting Data Collection.
The Fifth Principle: Limiting Data Use, Retention, and Disposal.
The Sixth Principle: Data Access.
The Seventh Principle: Limiting Data Disclosure.
The Eighth Principle: Data Security.
The Ninth Principle: Data Quality.
The Tenth Principle: Monitoring and Compliance.

​​​​

Data Subject Rights

First: The Right to Know, which includes notifying them of the legal basis or actual need to collect their personal data, the purpose of that, and that their data shall not be processed later in a manner inconsistent with the purpose for which their implicit or explicit consent was given.
Second: The Right to Withdraw Consent to process their personal data at any time, unless there are legitimate purposes that require otherwise.
Third: The Right to Access their personal data held by the controller, in order to view it, request its correction, completion, or updating, request the destruction of what is no longer needed, and obtain a clear copy of it.​​