# O4.8 Design specific security features to protect against unauthorized access and data breaches

{% tabs %}
{% tab title="Principle " %}
[O4 Assure data security by design](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/principles/operational-principles/o4-assure-data-security-by-design)
{% endtab %}

{% tab title="Risk" %}
[RS1 Privacy Vulnerability ](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/risks/risks-to-safety)
{% endtab %}

{% tab title="Life Cycle Stage" %}
[L2 Strategy and Design](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/responsible-authorities/r3-donor/l2-strategy-and-design-old)
{% endtab %}
{% endtabs %}

## Practices

> * Enable two-factor authentication (2FA) by default for all users to add an extra layer of security.
> * Integrate automated fraud detection systems to monitor and respond to suspicious activities.