Skip to main content
ICO: Information Commissioner's Office

The UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

Search
Search

  • Home
  • Your data matters
  • For organisations
  • Make a complaint
  • Action we've taken
  • About the ICO
  1. For organisations
  2. Guide to Data Protection
  3. Guide to the General Data Protection Regulation (GDPR)
  4. Principles

Principle (f): Integrity and confidentiality (security)

Share(Opens Share panel) Download options(Opens download panel)

Share this page

  • Share via Reddit
  • Share via LinkedIn
  • Share via email
Download options

Pages

Format

  • About the Guide to the GDPR
  • What's new
  • Key definitions
    • What is personal data?
    • Controllers and processors
  • Principles
    • Lawfulness, fairness and transparency
    • Purpose limitation
    • Data minimisation
    • Accuracy
    • Storage limitation
    • Integrity and confidentiality (security)
    • Accountability principle
  • Lawful basis for processing
    • Consent
    • Contract
    • Legal obligation
    • Vital interests
    • Public task
    • Legitimate interests
    • Special category data
    • Criminal offence data
  • Individual rights
    • Right to be informed
    • Right of access
    • Right to rectification
    • Right to erasure
    • Right to restrict processing
    • Right to data portability
    • Right to object
    • Rights related to automated decision making including profiling
  • Accountability and governance
    • Contracts
    • Documentation
    • Data protection by design and default
    • Data protection impact assessments
    • Data protection officers
    • Codes of conduct
    • Certification
    • Data protection fee
  • Security
    • Encryption
    • Passwords in online services
  • Personal data breaches
  • International transfers
  • Exemptions

You must ensure that you have appropriate security measures in place to protect the personal data you hold.

This is the ‘integrity and confidentiality’ principle of the GDPR – also known as the security principle.

For more information, see the security section of this guide.

Back to top Previous Next
  • Share this page (Opens share panel)
  • Print this page
  • RSS feeds
  • Follow us on Twitter
  • Like us on Facebook
  • Connect with us on Linkedin
  • Watch us on YouTube

Share this page

  • Share via Reddit
  • Share via LinkedIn
  • Share via email
Subscribe to our e-newsletter Listen or translate
ICO: Information Commissioner's Office

Your data matters

  • Your right of access
  • Official information
  • Nuisance calls

For organisations

  • Guide to Data Protection
  • Guide to FOI
  • Guide to PECR

Action we've taken

  • Enforcement action
  • Decision notices
  • Audits and advisory visits

About the ICO

  • Who we are
  • What we do
  • News and events
  • Jobs

Other languages

  • Cymraeg
  • Français
  • Español

The UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

  • © Copyright
  • Privacy notice
  • Cookies
  • Disclaimer
  • Cymraeg
  • Publications
  • Accessibility
  • Contact us

Phone: 0303 123 1113

Open Government Licence

All text content is available under the Open Government Licence v3.0, except where otherwise stated.