concepts of data privacy

Question 1

About people and our sense
of being in control of others
access to ourselves or to
information about ourselves
with others

Answer 1

privacy

Question 2

Treatment of identifiable,
private information that has
been disclosed to others;

Answer 2

confidentiality

Question 3

privacy or confidentiality? state of being away from public attention

Answer 3

p

Question 4

p or c, about individuals

Answer 4

p

Question 5

p or c, state wherein info is kept secret

Answer 5

c

Question 6

p or c, about info

Answer 6

c

Question 7

p or c, personal choice

Answer 7

p

Question 8

p or c, it is a right

Answer 8

p

Question 9

p or c Restricts the public from
accessing personal date

Answer 9

p

Question 10

p or c, professional obligation and agreement

Answer 10

c

Question 11

p or c, Restricts unauthorized people
from accessing confidential
data

Answer 11

c

Question 12

the most comprehensive of rights, and the right most valued by a free people

Answer 12

the right to be left alone

Question 13

try to enumerate the legal aspect of right of privacy

Answer 13

Protection from unreasonable intrusion upon one’s isolation

Protection from appropriation of one’s name or likeness

Protection from unreasonable publicity given to one’s private life

Protection from publicity that unreasonably places one in a false
light before the public

Question 14

protection from ________ upon one’s __________-

Answer 14

Protection from unreasonable intrusion upon one’s isolation

Question 15

protection from _______ of one’s ___________

Answer 15

Protection from appropriation of one’s name or likeness

Question 16

protection from ____________ given to one’s ________-

Answer 16

Protection from unreasonable publicity given to one’s private life

Question 17

protection from ____________ that _______ places one in a ______ before the public

Answer 17

Protection from publicity that unreasonably places one in a false
light before the public

Question 18

also known as ra 10173

Answer 18

data privacy act of 2012

Question 19

also known as data privacy act of 2012

Answer 19

ra 10173

Question 20

what year was Data privacy act acted into law

Answer 20

2012

Question 21

when was national privacy commission formed?

Answer 21

march 2016

Question 22

Implementing
rules and
Regulations
(IRRs) was
published

Answer 22

august 2016

Question 23

IRRs came into
effect
(compy with all
provisions
except
registration
requirments)

Answer 23

sep 9, 2016

Question 24

when did DPA comply with registration requirements?

Answer 24

sep 9 2017

Question 25

enumerate key roles in data privacy act

Answer 25

• data subjects
• personal information controller
• personal information processor
• data protection officer
• National Privacy Commission

Question 26

Refers to an individual whose, sensitive personal, or privileged information is processed personal

Answer 26

data subjects

Question 27

– Controls the processing of personal data, or instructs another to process personal data on its behalf

Answer 27

personal information controller

Question 28

Organization or individual whom a personal information controller may outsource or instruct the processing of personal data pertaining to a data subject

Answer 28

personal information processor

Question 29

Responsible for the overall management of compliance to DPA

Answer 29

data protection officer

Question 30

Independent body mandated to administer and implement the DPA of 2012, and to monitor and ensure compliance of the country with international standards set for personal data protection

Answer 30

National Privacy Commission

Question 31

enumerate the rights of data subject

Answer 31

right to be informed
right to object
right to access
right to data portability
right to correct (rectification)
right to erasure or blocking
right to file a complaint
right to damages
transmissibility of right

Question 32

sec 34.a

Answer 32

right to be informed

Question 33

what section: right to be informed

Answer 33

sec 34.a

Question 34

what section: right to object

Answer 34

sec 34.b

Question 35

sec 34.b

Answer 35

right to object

Question 36

sec 34.c

Answer 36

right to access

Question 37

what section: right to access

Answer 37

sec 34.c

Question 38

what section: right to data portability

Answer 38

sec 36

Question 39

sec 36

Answer 39

right to data portability

Question 40

what section: right to correction (rectification)

Answer 40

sec 34.d

Question 41

sec 34.e

Answer 41

right to erasure or blocking

Question 42

what section: right to erasure or blocking

Answer 42

sec 34.e

Question 43

sec 34.a.2

Answer 43

right to file a complaint

Question 44

what section: right to file a complaint

Answer 44

sec 34.a.2

Question 45

what section: right to damages

Answer 45

sec 34.f

Question 46

sec 34. f

Answer 46

right to damages

Question 47

what section: transmissibility of rights

Answer 47

sec 35

Question 48

sec 35

Answer 48

transmissibility of rights

Question 49

refers to any information whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual.

Answer 49

personal information

Question 50

mnemonics for personal data cycle

Answer 50

A - Acquisition
S - Storage
U - Use
T - Transfer
D - Detruction

Question 51

retention/disposal of personal data lifecycle should be based on?

Answer 51

1. Law
2. Industry best pratice
3. Business need

Question 52

Transparency?

Answer 52

the consent regime

Question 53

the consent regime?

Answer 53

transparency

Question 54

A data subject must be aware of the nature, purpose, and extent of the
processing of his or her personal data, including the risks and safeguards involved, the identity of personal information controller, his or her rights as a data subject, and how these can be exercised.

Answer 54

principle of transparency

Question 55

The processing of information shall be compatible with a declared and
specified purpose, which must not be contrary to law, morals, or public policy

Answer 55

principle of legitimate purpose

Question 56

The processing of information shall be adequate, relevant, suitable,
necessary, and not excessive in relation to a declared and specified purpose.

Answer 56

principle of proportionality

Question 57

enumerate the 3 principles

Answer 57

principle of transparency
principle of legitimate purpose
principle of proportionality

Question 58

what are the five pillars of compliance?

Answer 58

1. commit to comply: appoint a data protection officer
2. know your risk: conduct a priacy impact assesment
3. be accountable: create your won privacy management program or privacy manuals
4. demonstrate your compliace: implement your privacy and data protections measure
5. be prepared for breach regularly exercise you: regularly exercise your breach reporting procedrues

Question 59

who said na data is more important than money

Answer 59

si dondi mapa

Question 60

who said that competitors can copy ur products eklabush churvaness

Answer 60

damian mapa