1. Organisation for Economic Co-operation and Development (OECD), ‘Recommendation of the Council concerning Guidelines governing the protection of privacy and transborder flows of personal data’, 23 September 1980, available at http://www.oecd.org /document/18/0,3343,en_2649_34255_1815186_1_1_1_1,00.html. Accessed 30 November 2010.

2. Article 29 Data Protection Working Party, ‘Opinion 3/2010 on the principle of accountability’, WP 173, 13 July 2010, 3, available at http://ec.europa.eu /justice/policies/privacy/docs/wpdocs/2010/wp173_en.pdf. Accessed 8 February 2011).

3. See, for example, Centre for Information Policy Leadership (CIPL), ‘Data protection accountability: the essential elements a document for discussion,’ The Galway Project, 5–6 October 2009, available at http://www.huntonfiles.com /files/webupload/CIPL_Galway_Accountability_Paper.pdf. Accessed 20 November 2010;

4. P.M. Schwartz, ‘Managing global data privacy: cross-border information flows in a networked environment,’ a working paper by The Privacy Projects, October 2009;

5. Pearson and A. Charlesworth, ‘Accountability as a way forward for privacy protection in the cloud’ in Cloud Computing. First International Conference. CloudCom 2009, (eds) M. G. Jaatun, G. Zhao, and C. Rong ( New York: Springer, 2009 ), pp. 134–41.