The organization should have a process for regularly assessing the accuracy and correctness of personal data, making necessary updates, and notifying data recipients of corrections.
The more important the accuracy of the information is, the more measures the controller must take to ensure the correctness of the information. Ensuring the correctness of the information is particularly important when decisions relevant to the individual are made on the basis of personal information. In this case, inaccurate and incorrect information can seriously endanger the data subject's rights (e.g. lead to incorrect treatment decisions).
The organization should limit the collection of personal data to the minimum level that is essential and necessary for the purpose of processing the personal data collected.
The realization of the principle should be ensured regularly from the point of view of all processing by comparing the documentation of the management system (e.g. the purposes of use of the data) with the personal data held by the organization in practice.