Accountability is a key principle of Data Protection and organisations are expected to demonstrate that they are being accountable in relation to their Data Protection practices.
What this means in practice for organisations can be less clear, but the ICO has recently released an Accountability Framework to help organisations understand whether they are meeting the accountability principle and where there may be gaps in their current practices. This considers such areas as leadership and oversight, training and awareness raising, policies and procedures, individuals rights, transparency, records of processing and lawful basis, contracts and data sharing, risks and data protection impact assessments, records management and security and breach management. The tool can effectively support organisations in understanding where further work may be needed to ensure ongoing compliance with data protection law and the accountability principle. More information can be found on the ICO website.