Contribution of Privacy by Design (of the Processes)

  • Santiago Martín-Romo Romero
  • Carmen De-Pablos-Heredero


Privacy by design (PbD) will soon be a compulsory requirement for firms processing personal data. The GDPR (General Data Protection Regulation), a new Act in the EU establishes compulsory fulfillment for firms located in the European Union from May 2018. By considering that PbD philosophy leads to protect personal data, it is proposed to start the protection from the design of business activities. Privacy from the business process management perspective has barely been studied. In this paper a group of organizational mechanisms oriented to implement protection measures based on privacy by design are provided. Based on the analysis of 18 surveys done to privacy by design and data security experts, some recommendations are offered. They are based in the analysis of strengths, weakness, opportunities and threads envisioned by the different experts.

How to Cite
Martín-Romo Romero, S., & De-Pablos-Heredero, C. (2017). Contribution of Privacy by Design (of the Processes). Harvard Deusto Business Research, 6(3), 176-191. doi:10.3926/hdbr.180


privacy by design; personal data; process; security; Swot analysis