Open navigation
Search
Search

Privacy by Default/ Privacy by Design

Privacy by Default and Privacy by Design

These two buzzwords refer to technical concepts described in the GDPR that your company will not get around heeding and implementing: data protection as a default setting (“privacy by default”) and data protection through technical means (“privacy by design”). This means that IT systems have to be configured in a way that the programming has already greatly reduced the possibility of illegitimate data processing operations. For example, checkboxes must not be pre-selected in a way that pushes users to consent.

Establishing a record of processing activities is a crucial prerequisite for being able to take adequate technical and organisational measures to provide for privacy by default and privacy by design. This is because once your company has internalised the requirements to be met to legitimately process personal data, it is easier to decide which measures have to be taken for these two privacy settings.

  • Finally, the principle of privacy by design is considered fulfilled when, e.g., the data subject’s consent is obtained prior to the data processing. 

Insights on Privacy by Default/ Privacy by Design

jussuccess 2026

jussuccess 2026

05 Nov 2026
Career Calling 2026

Career Calling 2026

14 Oct 2026
REWI-Pra­xis­tag

REWI-Pra­xis­tag

08 Oct 2026
Invitation equIP Connect Summer Special | AustrianStartups x CMS

Invitation equIP Connect Summer Special | AustrianStartups x CMS

21 Jul 2026
UK Clinical Trial Transparency and Patent Strategy

UK Clinical Trial Transparency and Patent Strategy

13 Jul 2026 12 min read
Constitutional Court – No Internal Municipal Appeal Procedure under the IFG

Constitutional Court – No Internal Municipal Appeal Procedure under the IFG

10 Jul 2026 3 min read
Gambling Reform 2026: Austria opens up the online market – but only under strict conditions

Gambling Reform 2026: Austria opens up the online market – but only under strict conditions

10 Jul 2026 16 min read
The European Competition Network (ECN) supports merger control "call-in" mechanisms"

The European Competition Network (ECN) supports merger control "call-in" mechanisms"

09 Jul 2026 5 min read

Searching for the international perspective?

CMS’ global thought leadership expands to more than 40 countries. Find local insights to your specific matter – locally and globally.

Local market knowledge. Global outlook

We provide future-facing legal advice to help your organisation thrive. Combining local market knowledge and a global perspective, and with lawyers in locations worldwide, your organisation benefits from the expertise it needs, even across borders.

About CMS
People across CMS Find a Lawyer
10,000+ Staff
7,200+ Lawyers
Locations across CMS Find an office
50+ Countries
90+ Offices
22 Member firms
Back to top Back to top
Opens in new window