Privacy by design is an approach to projects that promotes Privacy and Data Protection compliance from the start.
Privacy and Data Protection obligations must not be an afterthought. They should be key considerations from the beginning of any project and then throughout its lifecycle.
Consideration should be given when building a new IT system which will store personal data, developing policies and using data for new purposes.
The GDPR requires organisations to implement technical and organisational measures to show that they have considered and integrated data protection measures into their data processing activities.