The #dataprivacy world is constantly moving. That's why @Calligo has created this quick and digestible guide to the key "elements" of the data privacy world. And every time we update the table to reflect recent changes, it triggers debate! There are only 118 boxes available to us, and the #dataprivacy world is far too complex to be encapsulated in such a small number of elements, so we always have to make some hard – and sometimes controversial – decisions. This is an open project, contributed to by the entire privacy community and regularly updated by our Data Privacy Services team. What do you think of our latest update to #TheDataPrivacyPeriodicTable?

1. 103
10
18
36
54
86
118
Ac
3
Ri
Right to be
informed
11
Rf
19
Rp
37
Wt
55
Ob
87
Con
4
Co
Contract
12
Lo
20
Vi
38
Pb
56
Li
88
ʻCom’
21
S
22
PbD
23
Pe
24
Pr
25
IT
26 27
PIA
28
Rfr
29 30
Ex
41
Go
42
Tr
43
Is
44 45
TOMs
46
Pg
47
Bn
48
DSe
73
DSi
74
Eu
75
Em
76
Cu
77
Tp
78
Mb
79
Hc
80
DSint
105
Pp
106
Pn
107
Cn
108 110
CDA
111 112
Ow
40
Im
72
DPAg
104
In
57
Au
58
Ct
59
Re
60
H
61
Cs
62
Su
63
Lk
64
Tk
65
Cm
66
Is
67
UtD
68
Exp
69
Nk
70
Sc
89
FISA/Pa
90 91
CLOUD
92
IA
93
G
94
YL
95
MiFID II
96
OFAC
97
FINTRAC
98
C17
99
MLO
100
Bc
101 102
As
Independent Authoritative Consultative Reliable Honest Consistent Supportive Legal
Knowledge
Technical
knowledge
Change
Management
Infosecurity
expertise
Up-to-date Experienced Network Auditing skills
The Periodic Table of Data Privacy
An overview of the key elements of data privacy
PDU
Personal Data Use
laws
13
113
6
DSc
Data Sharing
frameworks
(Companies)
14
114
Ac
7
C
Confidentiality
15
115
Su
8
I
Integrity
16
L
34
USb
116
Ty
9 10
18
36
54
86
118
A
Availability
17
Ny
35
R
53
117
E
Ethics
1
Ll
Access Consent
HR
5
Human Rights
Laws
Accountability Sustainability Transparency Local legislators
Lr
Local regulators
ISO
ISAE
IAPP
Withdraw
consent
Public Interests Data Sharing
(external)
Data Sharing
(internal)
End users Employees Customers Third Parties Marketing
databases
Hardcopies
Incident
management
81
AI
Artificial
Intelligence
82
CP
Child Protection
laws
83
Wb
Whistleblowing
laws
84
CoC
Professional Codes
of Conduct
SC
85
Standards and
Certifications
International
Association of Privacy
Professionals
39
57-71
89-103
Fundamental principles of data protection
Universal rights of the data subject
Lawful justifications for processing
Central components of data privacy
Future developments
Legislation and practices whose powers and
requirements can conflict with data privacy
Core legislation
Independent bodies
Traits and skills of the most reliable
privacy advisors
EDPB
European Data
Protection Board
Em C-19
KYC
"Snooper's Charter"
aka IPA (UK)
Foreign Intelligence
Surveillance Act &
Patriot Act (US)
Clarifying Lawful
Overseas Use of Data
Act (US)
Intelligence Act
(France)
G-10 (Germany) Yarovaya Law
(Russia)
Markets in Financial
Instruments Directive
(EU)
OFAC Specially
Designated Nationals
List (US)
Financial Transactions
and Reports Analysis
Centre (Canada)
CSSF Circular
17/650
(Luxembourg)
Money Laundering
(Jersey) Order
Background
checking
Employee online
monitoring
COVID-19
Contact Tracing
Know your
customer
V EUds
Iv
Av
UK
DPIA
Ps
PO
Restriction of
processing
Vital Interests Executor Governance Training Information
security
Processing
records
Breach
notifications
Owner
49
MD
Medical Data
laws
50
eP
ePrivacy laws Retention International Standard
on Assurance
Engagements
51
SLs
Surveillance laws
(States)
52
SLc
Surveillance laws
(Companies)
Technical and
organisational
measures
Physical security
Privacy Officer
Dm
Right to be
forgotten
Legal
obligation
ʻCompliance’ Scope Privacy by
Design
People Processes IT
infrastructure
Gu
31
Guidance
DSs
32
Data Sharing
frameworks
(States)
Lawfullness Necessary
International
Organization for
Standardization
33
J
Judgements
Data Protection
Impact
Assessment
Data mapping
Risk
framework
Privacy Impact
Assessment
109
PDPB
Objection Legitimate /
overriding interest
Data Sharing
(international)
Privacy policy Privacy notices Cookie notices
Data Protection
Agreement
Vaccinations EU Data Strategy
Identity
Verification
Age
Verification
Data Protection
post Brexit
(United Kingdom)
PDPL
Saudi Arabia
Personal Data
Protection Law
Personal Data
Protection Bill (India)
Canada Acts United States
Bills
Ck
Cookies
www.calligo.io/dptable
More information on how this table was created, the thinking behind the
classification of Data Privacy elements, and how you can get involved:
2
M
a
y
2
0
2
2
L
a
s
t
u
p
d
a
t
e
d
:
71
103
Our services instil data privacy into the
core of your business, whether its
answerable to international, national or
industry-specific obligations, we’ll ensure
your ongoing observance.
Calligo’s Data Privacy
Services
S E R V I C E S
Read More
Fa
Fairness
The Data Privacy
Rosetta Stone
E B O O K
Learn how to create a common language
between privacy, legal and security -
essential for ongoing privacy adherence.
Understanding privacy yourself is one
thing. But what about the rest of the
business?
The Data Privacy
Rosetta Stone
E B O O K
Learn how to create a common language
between privacy, legal and security -
essential for ongoing privacy adherence.
Understanding privacy yourself is one
thing. But what about the rest of the
business?
Learn More