Data Management Flashcards

1
Q

What is the GDPR 2018 and how does your business comply with them?

A

A Strong set of Data Protection Rules. Synergy have a Privacy Notice, which they require staff to sign confirming that their personal data can be stored in accordance with the GDPR 2018. They advise staff of their rights under the regulations as well as refer to the principles. Synergy store client details on SIMS – Recording of information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the Data Protection Act 2018?

A

Controls how your personal information is used by organisations, businesses and the Government. Everyone using personal data must follow strict rules called data protection principles.
(1. Lawfulness Fairness & Transparency 2. Purpose limitation 3.Data minimisation 4. Accuracy 5. Storage limitation 6.Integrity and 7. Confidentiality 8. Accountability).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Who do you file complaints with in relation to GDPR?

A

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How does Synergy store data?

A

Synergy store data on the individuals in the business. They also have a client list, where they anonymously state their interest to detail their interests for marketing purposes and business relations. Our emails are automatically deleted after three years if not precisely stored in the Information Management System. Synergy also use ISO 9001 which sets requirements on how firms should control data relevant to the service they provide.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the difference between sensitive data and data?

A

Sensitive data would include personal data includes information about racial or ethnic origin, political opinions, religious beliefs, membership of trade unions, genetic and biometric data, health information and data around a person’s sex life or orientation and data is email address, home address, phone number.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the Principles under GDPR?

A

(LFPDASIA) Lawfulness, Fairness and Transparency, Purpose Limitation. Data minimisation, Accuracy, Storage limitation, Integrity and confidentiality Accountability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the Freedom of Information Act and how would you advise your Client to use it?

A

Schools have a lot of information that is held by the Local Authority and the Freedom of Information Act allows people the right to the information that is stored and the holding authority have 20 days to respond. The only information that can be refused is the information held by Federal Law.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are your rights under GDPR?

A

Under the Data Protection Act 2018, you have the right to find out what information is being stored about you. BAREROAD - The right to Be informed, the right of Access, the right to Rectification, the right to Erasure, the right to Restrict processing, the right to Data portability, the right to Object and also rights around Automated decision making and profiling. It is free to request however, some companies may charge and admin fee.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

When can information be withheld?

A

The prevention, detection, investigation of a crime, national security or the armed forces, the assessment or collection of tax, judicial or ministerial appointments.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are your individual Rights under GDPR?

A

BAREROAD – Rights to:

  1. Be informed
  2. Access
  3. Restrictions
  4. Erasure
  5. Rectification
  6. Object
  7. Automated Decision Making
  8. Data portability.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What’s the difference with sensitive data and data? Give examples?

A

Sensitive data is extremely confidential information about the persons interests and political beliefs. Data is how a person is identified and could include address, name, and contact details.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the GDPR regulations?

A

General Data Protection Regulations. The Data Protection Act 2018 controls how your personal information is used by organisations, businesses or the government.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What fines can be given for not adhering to GDPR?

A

The UK GDPR and DPA 2018 says that smaller offences - up to €10 million or two per cent of a firm’s global turnover (whichever is greater). The biggest GDPR breaches - Up to €20 million or four per cent of a firm’s global turnover (whichever is greater). This could mean a fine of up to £17.5 million, or 4% of your total worldwide annual turnover, whichever is higher.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What can constitute to a fine under the GDPR 2018 Act?

A

If an organisation does not process an individual’s data in the correct way. If it requires and does not have a data protection officer If there’s a security breach.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What web tools do you use to manage data?

A

Will be based on personal experiences, this could be Dropbox. At synergy we use SIMS. It should provide each member of the project organisation access to view all relevant project documents. It should be secure and ensure privacy and protection of data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How are businesses to remain compliant with the GDPR Regulations?

A

Raised awareness across your business
Audit all personal data
Update your privacy notice