data.day
project management / gdpr / strategy

Purpose Limitation, Without the Legal Lecture

Scope creep is not just a project management failure; it is a privacy violation. Learn how to use the 'Purpose Note' to keep projects clean and legal.

Marie Query Marie Query

The “While We Are At It” Trap

The meeting is going well. The team is excited. Then, someone says the five most dangerous words in data strategy:

“While we are at it…”

“While we are at it, let’s also ask for their phone number.” “While we are at it, let’s track their location.” “While we are at it, let’s buy a third-party list to append to this one.”

And just like that, a simple project to improve email deliverability transforms into a full-scale surveillance operation.

We call this Scope Creep. But when it involves human data, it is not just an annoyance for the project manager. It is an intrusion. It is a breach of the contract—spoken or unspoken—that you have with the people in your database.

You collected the data for Purpose A. You are now using it for Purpose B, C, and D. You have broken your word. Voilà.

The Intrusion: The Drifting Mandate

Why does this happen? It happens because we view data as a raw material that we own, rather than a borrowed asset that we steward.

We assume that once the data is in our database, we are free to do with it as we please. But this is incorrect. The data was lent to us for a specific job.

When we allow the scope to drift, we are not being “data-driven.” We are being greedy. We are assuming that our curiosity is more important than the client’s expectation of privacy.

This lack of focus destroys projects. We end up building massive, bloated databases that are impossible to secure and impossible to clean, all because we lacked the discipline to say “No” in the planning phase.

The Boundary: The One-Page Purpose Note

The fix is surprisingly analog. Before a single line of code is written, or a single form field is designed, we write the Purpose Note.

It is not a 40-page legal document. It is one paragraph. It answers three questions:

  1. What are we building?
  2. Why do we need this specific data to build it?
  3. When do we stop?

If you cannot answer “When do we stop?”, the project is not approved.

This note serves as the anchor. When the enthusiastic marketing director suggests adding facial recognition to the check-in kiosk, you point to the note. “That is not in the Purpose. If you want to add it, we must start a new compliance review.”

Usually, the friction alone is enough to kill the bad idea.

This is how you maintain elegance in your operations. You define the boundary, and you respect it.

It limits liability, yes. But more importantly, it signals to your team that you are professionals who operate with intent. We do not wander through our clients’ private lives just because we can. We go in, we do the job we promised, and we get out.

That is respect.

FAQs

Can't we just collect data now and define the purpose later?

No. That is like performing surgery and deciding which organ to remove once you are inside. It is reckless.

What if the client changes their mind?

Then you write a new Purpose Note. You do not sneak the new requirements into the old agreement.

Is this just more paperwork?

It is a single paragraph. If you cannot write one paragraph about why you are doing something, you should not be doing it.