This module D1 deals with the “how question” and offers a further elaboration of the Privacy & Security Accounting (PSA) methodology. It also provides insight into the operation of the Standard Business Compliance Management System (SBC). SBC is the application that fully fulfills the PSA methodology. Attention is also paid to the technique of replication based on Sticky Information Policies (SIP) and Trusted Agents (TA) which facilitates replication of information and thus makes the accounting process particularly effective and cost-efficient. Finally, the Internal Control Measures surrounding the PSA methodology are discussed.