GDPR Article 5: Principles relating to processing of personal data

All 99 Articles Chapter 2: Principles

The seven principles at the heart of the GDPR. Every processing activity must satisfy all of them, and you must be able to demonstrate that it does (accountability).

Key points

Lawfulness, fairness and transparency; purpose limitation; data minimisation.
Accuracy; storage limitation; integrity and confidentiality (security).
Accountability — you must be able to show your compliance, not just assert it.

Read the official text on EUR-Lex

6Lawfulness of processing 25Data protection by design and by default 32Security of processing 24Responsibility of the controller 4Definitions 11Processing not requiring identification

Learn the context

GDPR Key Changes

Practical guidance

The GDPR Compliance Checklist for 2026: A Practical 12-Step Guide

These summaries are a plain-English orientation only and are not a substitute for the official text of the Regulation or for legal advice.

Need to apply Article 5?

Our data-protection lawyers turn the text into a plan.

Talk to a lawyer

Back to all articles

Article 5 — Principles relating to processing of personal data

Key points

Related articles