# O3.22 Ensure linkability, unobservability, and zero-knowledge proofs are the default

{% tabs %}
{% tab title="Principle" %}
[O3: Ensure data privacy by design](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/principles/operational-principles/o3-ensure-data-privacy-by-design)
{% endtab %}

{% tab title="Risk" %}
[RS1 Privacy vulnerability](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/risks/risks-to-safety), [RS2 Digital insecurity](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/risks/risks-to-safety)
{% endtab %}

{% tab title="Lifecycle Stage" %}
[L2: Strategy & Design](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/life-cycle-stages)
{% endtab %}
{% endtabs %}

## Practices

> * Requests for information can be refused, complied with fully, or partially, with zero-knowledge proofs used to verify information without transferring personal data.
> * Design technical systems to protect user interactions from being correlated across different relying parties, unless the user provides their legal identity.
> * Ensure that DPI operators cannot gain knowledge of user behavior or interactions without explicit user consent, using techniques like encryption and anonymization to safeguard privacy.

## Resources

<table data-view="cards"><thead><tr><th></th><th></th><th></th></tr></thead><tbody><tr><td>References</td><td></td><td></td></tr></tbody></table>