Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Data privacy and protection > chapter 1 > Flashcards

chapter 1 Flashcards

1
Q

what is Data Security

A

Set of practices and processes deployed to
protect data and data resources, including
confidentiality, integrity, availability, etc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

what is Data Privacy

A

Data privacy is a branch of data security
concerned with the proper handling of
personal or private information, including
consent, notice, regulatory obligations, etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

what is personal data

A

–> Any information related to an
individual that can be used to
directly or indirectly identify the
person

–> Data that has been de-identified,
but can be used to re-identify a
person remains personal data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

what is not considered personal data

A

–> Data that has been rendered
anonymous in such a way that the
individual is not or no longer
identifiable, is no longer considered
personal data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

what are the 4 Personal Data – Building Blocks

A

Any information

Relating to

Identified or identifiable

Natural person

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

what does the Any information building block say

A

Any type of information about the
person, includes objective information,
subjective information, sensitive information, information in any medium.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

what does the “Relating to” building block say

A

Information that is about the individual.
Data that is related to the individual
because of it’s content, it’s purpose, or
the result of processing the data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

what does the “Identified or identifiable” building block say

A

Information that can distinguish an
individual from other people within the
group.

Information that makes it
possible to identify the individual.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

what does the “natural person” building block say

A

A real physical human being, in contrast
to an artificial or fictitious person

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

examples of personal data

A

name

email address

phone number

IP address

home address

identification number

cookie-ID

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

examples of data which comes under special category

A

criminal records

racial or ethnic origin

health and genetic data

religious or philosophical beliefs

biometric data

trade union membership

political opinion

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

examples of data which is NOT personal data

A

company registration number

general email address

anonymised data

information about legal entities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Pseudonymization vs Anonymization

A

Pseudonymization (used where a level of traceability remains):

–> Data still considered personal because a connection to the individual can be re-established with additional information or effort.

–> Used to reduce the privacy risk, but not enough to remove personal data status.

Anonymization:

–> Data not considered personal because no identifiable information remains.
Individuals cannot be re-identified, even if other data is combined.

–> Complies with data protection regulations, as no privacy risk exists.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

what are the 7 principles of data privacy

A

Lawfulness, fairness, and transparency

Purpose limitation

Data minimization

Accuracy

Storage limitation

Integrity and confidentiality

Accountability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

what is Lawfulness, fairness, and transparenc

A
  • Process personal data lawfully, fairly, and
    transparently
  • Collection methods must be legal, with clear privacy policies and purposes
  • Articulate why they want your personal data and how they intend to use it
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

what is Purpose limitation

A
  • Collect personal data for a clear and specific purpose
  • Companies have to use personal data in the way that they promised to apply it
  • Purpose of any data collection must be specific, clear, and limited to a relevant scope
17
Q

what is Data minimization

A
  • Make sure that the processing of personal data is adequate, limited to what is necessary, and relevant
  • Helps contain exposure and personal damage in the event the company’s data is compromise
18
Q

what is Accuracy

A
  • Keep collected personal data accurate and up to date
  • Maintain the personal data and take reasonable action to erase or rectify inaccurate or incomplete information
19
Q

what is Storage limitation

A
  • Personal data should only be stored as long as needed and then either deleted or anonymized
  • Personal data should not be retained or be reuse beyond its original stated purpos
20
Q

what is Integrity and confidentiality

A
  • Implement appropriate technical and organizational security measures to protect the collection and processing of personal data
  • Companies need systems in place to protect against unauthorised access and to ensure redundancy
21
Q

what is accountability

A
  • Data collectors are responsible for, and be able to demonstrate compliance with all of the principles
  • Data collectors must show that they are taking reasonable action to meet the six previous principles

Data privacy and protection (7 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions