Perhaps the most important GDPR principle, which requires controllers to take responsibility for complying with the GDPR and, document their compliance.