Integrity and confidentiality

This principle states that personal data shall be:

"processed in a way that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures".

This replicates the generality of the existing requirements.

Articles 30 - 32, together with Recitals 60 -69, deal with the "security of processing" and "data breach notification"