What are the key privacy principles that CISSP candidates must know?

Key privacy principles include purpose limitation meaning data is collected only for specified purposes, data minimization meaning only necessary data is collected, consent meaning individuals agree to data collection and use, notice meaning individuals are informed about data practices, access meaning individuals can view and correct their data, and retention limitation meaning data is kept only as long as needed. These principles appear across privacy frameworks including the General Data Protection Regulation, the California Consumer Privacy Act, and the OECD Privacy Guidelines.