Embedding Privacy by Design in Everyday Operations