Data Management Flashcards
What are the key principles of the freedom of info Act 2000?
Applies to all public bodies in England, Wales and Northern Ireland. The act relates to all information held in any form. Acknowledge request for information within 20 days.
What does GDPR stand for?
General Data Protection Regulation which came into force in May 2018
What are the rights under GDPR?
The right to:
Decisions in relation to automated profiling etc
Access
Informed
Restrict processing
Rectification
Erase
Object
Data portability
What are the 6 principles of GDPR
Lawfulness, fairness and transparency
Purpose limitation
Data minimisation
Accuracy
Storage limitation
Integrity and confidentiality
How do you have regards for GDPR in your day to day basis?
There are information barriers within my company which does allow access to customer details.
What are the consequences of breaking GDPR regulations
20m Euros or 4% of annual global turnover, whichever is greater
Who polices GDPR
Information Commissioners Office (ICO)
What is the difference between a data controller and data processor ?
The data controller is the person (or business) who determines the purposes for which, and the way in which, personal data is processed.
By contrast, a data processor is anyone who processes personal data on behalf of the data controller
What is personal data?
Personal data -NI Number, Age, DoB, Name, Address, Email etc
What is special category data?
Special category -Physical/mental condition, Trade union, ethinicity, religion
How long do you have to respond to a SAR and what is it?
SAR -Subject Access Request -respond within 1 month
What is a non disclosure agreement?
It is a legally binding document which establishes a confidential relationship. It is signed to ensure that parties who view sensitive information may not disclose any of that information to third parties. Information can be shared in confidence.
