The Principles on Personal Data Protection and Privacy set out a basic framework for the processing of personal data by, or on behalf of, the United Nations System Organizations in carrying out their mandated activities.

The Principles aim to: (i) harmonize standards for the protection of personal data across the UN System; (ii) facilitate the accountable processing of personal data; and (iii) ensure respect for the human rights and fundamental freedoms of individuals, in particular the right to privacy. These Principles apply to personal data, contained in any form, and processed in any manner. Where appropriate, they may also be used as a benchmark for the processing of non-personal data, in a sensitive context that may put certain individuals or groups of individuals at risk of harms.
 
The High Level Committee on Management (HLCM) formally adopted the Principles at its 36th Meeting on 11 October 2018. The adoption followed the HLCM's decision at its 35th Meeting in April 2018 to engage with the UN Data Privacy Policy Group (UN PPG) in developing a set of high-level principles on the cross-cutting issue of data privacy. Preceding the 36th HLCM meeting in October, the Principles were developed and unanimously endorsed by the organizations represented on the UN PPG.

The UN PPG is an inter-agency group convened in September 2016 that is co-chaired by UN Global Pulse and the UN Office of Information and Communications Technology (OICT). The UN PPG’s primary objectives are to (i) advance dialogue and information sharing on key issues related to data privacy and protection within the UN system; (ii) unite existing efforts on data privacy and protection; and (iii) develop a practical UN System-wide framework on data privacy and data protection.

See the list of UN PPG members that prepared and endorsed the Principles.

Download the Personal Data Protection and Privacy Principles