[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZHjq2yziWtNV7PS0gsMcIhQfXC4qT4HhrSxJjK41iZI":3},{"tableOfContents":4,"markDownContent":5,"htmlContent":6,"metaTitle":7,"metaDescription":8,"wordCount":9,"readTime":10,"title":7,"nbDownloads":11,"excerpt":12,"lang":13,"url":14,"intro":12,"featured":4,"state":15,"author":16,"authorId":17,"datePublication":23,"dateCreation":24,"dateUpdate":25,"mainCategory":26,"categories":46,"metaDatas":52,"imageUrl":12,"imageThumbUrls":53,"id":54},false,"**Accountability**, or the **principle of accountability**, is a fundamental pillar of the **General Data Protection Regulation (GDPR)**, expressly provided for in **Article 5(2)** and operationalized by **Article 24**.\r\n\r\nIt requires the **data controller** not only to **comply** with the obligations of the GDPR, but also to be able to **demonstrate this compliance** at any time, especially in the event of a data protection authority audit.\r\n\r\nThis principle is concretely translated through a requirement for **documentation**, which relies primarily on maintaining a **record of processing activities**, but extends to all data protection governance actions. This includes, among others (non-exhaustive list):\r\n\r\n- **Internal procedures** to govern the creation of new processing activities, including risk assessment, proportionality, and control mechanisms,\r\n- A **procedure for conducting privacy impact assessments** (PIAs/DPIAs),\r\n- Developing **written data protection policies** that are binding and made available to data subjects,\r\n- **Structured identification** of all processing activities through data **mapping** or **data mapping**,\r\n- Implementation of **training programs** for relevant personnel,\r\n- **Procedures for managing individuals' rights** (access, rectification, erasure, objection, etc.),\r\n- An **internal mechanism for managing complaints**,\r\n- Procedures for **notifying personal data breaches**,\r\n- Implementation of **regular checks** (internal or external audits) to ensure that measures are **effectively implemented and functional**.\r\n\r\nAccountability thus relies on a proactive, continuous, and structured approach to compliance and constitutes the backbone of personal data governance within any organization.","\u003Cp>\u003Cstrong>Accountability\u003C/strong>, or the \u003Cstrong>principle of accountability\u003C/strong>, is a fundamental pillar of the \u003Cstrong>General Data Protection Regulation (GDPR)\u003C/strong>, expressly provided for in \u003Cstrong>Article 5(2)\u003C/strong> and operationalized by \u003Cstrong>Article 24\u003C/strong>.\u003C/p>\r\n\u003Cp>It requires the \u003Cstrong>data controller\u003C/strong> not only to \u003Cstrong>comply\u003C/strong> with the obligations of the GDPR, but also to be able to \u003Cstrong>demonstrate this compliance\u003C/strong> at any time, especially in the event of a data protection authority audit.\u003C/p>\r\n\u003Cp>This principle is concretely translated through a requirement for \u003Cstrong>documentation\u003C/strong>, which relies primarily on maintaining a \u003Cstrong>record of processing activities\u003C/strong>, but extends to all data protection governance actions. This includes, among others (non-exhaustive list):\u003C/p>\r\n\u003Cul>\r\n\u003Cli>\u003Cstrong>Internal procedures\u003C/strong> to govern the creation of new processing activities, including risk assessment, proportionality, and control mechanisms,\u003C/li>\r\n\u003Cli>A \u003Cstrong>procedure for conducting privacy impact assessments\u003C/strong> (PIAs/DPIAs),\u003C/li>\r\n\u003Cli>Developing \u003Cstrong>written data protection policies\u003C/strong> that are binding and made available to data subjects,\u003C/li>\r\n\u003Cli>\u003Cstrong>Structured identification\u003C/strong> of all processing activities through data \u003Cstrong>mapping\u003C/strong> or \u003Cstrong>data mapping\u003C/strong>,\u003C/li>\r\n\u003Cli>Implementation of \u003Cstrong>training programs\u003C/strong> for relevant personnel,\u003C/li>\r\n\u003Cli>\u003Cstrong>Procedures for managing individuals' rights\u003C/strong> (access, rectification, erasure, objection, etc.),\u003C/li>\r\n\u003Cli>An \u003Cstrong>internal mechanism for managing complaints\u003C/strong>,\u003C/li>\r\n\u003Cli>Procedures for \u003Cstrong>notifying personal data breaches\u003C/strong>,\u003C/li>\r\n\u003Cli>Implementation of \u003Cstrong>regular checks\u003C/strong> (internal or external audits) to ensure that measures are \u003Cstrong>effectively implemented and functional\u003C/strong>.\u003C/li>\r\n\u003C/ul>\r\n\u003Cp>Accountability thus relies on a proactive, continuous, and structured approach to compliance and constitutes the backbone of personal data governance within any organization.\u003C/p>\r\n","Accountability","Accountability, or the principle of accountability, is a fundamental pillar of the GDPR, expressly provided for in Article 5(2) and operationalized by Article 2",230,2,0,null,"en","accountability","Published",{"id":17,"displayName":18,"avatarUrl":19,"bio":20,"blogUrl":21,"color":12,"userId":17,"creationDate":22},31,"Jérôme de Mercey","https://static.dastra.eu/tenant-10/avatar/31/Zuh7XFZe5EnnTo/design-sans-titre-2-150.png","COO/cofounder","https://www.dastra.eu","2021-11-15T12:57:57","2025-04-08T21:34:00","2025-04-08T21:34:40.2196356","2025-08-29T13:59:03.8268141",{"id":27,"name":28,"description":29,"url":30,"color":31,"parentId":12,"count":12,"imageUrl":32,"parent":12,"order":11,"translations":33},21,"Glossary","Definition of every word used by Dastra","glossary","#643bb0","https://static.dastra.eu/tag/b308b9d3-37af-4e92-8354-ab8adec1740a/documentation-1000.png",[34,38,42],{"lang":35,"name":36,"description":37},"fr","Glossaire","La définition de tous les termes utilisés dans Dastra",{"lang":39,"name":40,"description":41},"es","Glosario","La definición de todos los términos utilizados en Dastra",{"lang":43,"name":44,"description":45},"de","Glossar","Die Definition aller in Dastra verwendeten Begriffe",[47],{"id":27,"name":28,"description":29,"url":30,"color":31,"parentId":12,"count":12,"imageUrl":32,"parent":12,"order":11,"translations":48},[49,50,51],{"lang":35,"name":36,"description":37},{"lang":39,"name":40,"description":41},{"lang":43,"name":44,"description":45},[],[],59058]