Data Management

Question 1

Basic principles of FOIA 2000 legislation?

Answer 1

1. Maximum disclosure;
2. Publish key information;
3. Promote open government;
4. Exceptions narrowly drawn;
5. Processed rapidly and fairly;
6. Minimum costs.

Question 2

What is the Freedom of Information Act 2000?

Answer 2

‘Legislation that grants public access to documents or other data in the possession of a government agency or public authority’.

Question 3

What is CRCA 2005?

Answer 3

Commissioners for Revenues and Customs Act 2005
Applies to all HMRC officers - act expressly provides duty to keep information confidential, with criminal penalites for wrongful disclosure

Question 4

Main sections of CRCA 2005?

Answer 4

• S.17 - allows sharing of information between HMRC and VOA (SDLT returns, RALDS)
• S.18 - permits disclosure of information outside VOA/HMRC in line with our function (RALDS to agents). Must be proportionate and necessary.
• S19 - makes it a criminal offence to disclose information that can identify an individual unless covered by s.18.

Question 5

What is the DPA 2018?

Answer 5

The Data Protection Act 2018 is the UKs implementation of the General Data Protection Regulation (GDPR). It controls how personal information is used by organisations, businesses or the government.

Question 5

What are the 7 key GDPR principles?

Answer 5

Must be followed by everyone using personal data. They must make sure information is used within the 7 key principles:
1. Lawfulness, fairness and transparency.
2. Purpose limitation
3. Data minimisation
4. Accuracy
5. Storage limitation
6. Integrity and confidentiality (security)
7. Accountability

Question 6

What are the 8 individual rights within DPA 2018?

Answer 6

1. Right to be informed.
2. Right of access.
3. Right of rectification.
4. Right to erasure.
5. Right to restrict processing.
6. Right to data porability (to use for their own purposes).
7. Right to object.
8. Right to automated decision making and profiling.