7 Principles of the General Data Protection Regulation (GDPR)

Question 1

Companies must use data fairly and in a way that doesn’t breach any other laws.

Answer 1

Lawfulness, fairness, and transparency

Question 2

Lawfulness, fairness, and transparency

Answer 2

Companies must use data fairly and in a way that doesn’t breach any other laws.

Question 3

Companies must be clear on their purpose for processing the data subject’s data.

Answer 3

Purpose limitation

Question 4

Purpose limitation

Answer 4

Companies must be clear on their purpose for processing the data subject’s data.

Question 5

Companies must ensure personal data they process is relevant, adequate and necessary.

Answer 5

Data minimisation

Question 6

Data minimisation

Answer 6

Companies must ensure personal data they process is relevant, adequate and necessary.

Question 7

Companies must ensure all personal data they hold is correct or update/erase it.

Answer 7

Accuracy

Question 8

Accuracy

Answer 8

Companies must ensure all personal data they hold is correct or update/erase it.

Question 9

Companies must not keep personal data for longer than they need it.

Answer 9

Storage limitation

Question 10

Storage limitation

Answer 10

Companies must not keep personal data for longer than they need it.

Question 11

Companies must ensure they have appropriate security measures to protect their data.

Answer 11

Integrity and confidentiality

Question 12

Integrity and confidentiality

Answer 12

Companies must ensure they have appropriate security measures to protect their data.

Question 13

Companies must have measures in place to demonstrate they are GDPR compliant.

Answer 13

Accountability

Question 14

Accountability

Answer 14

Companies must have measures in place to demonstrate they are GDPR compliant.