Describes security and privacy principles that should be considered in developing a data management system, including least privilege, fail-safe defaults, economy of mechanism, complete mediation, open design, minimization of risk, least common mechanism, psychological acceptability, and defense in depth.