Privacy by Design and Data Protection