Data Management

Question 1

What is the legislation in place surrounding data management?

Answer 1

• Data Protection Act 2018
• General Data Protection Regulations (2018)

Question 2

What is the difference between GDPR and Data Protection?

Answer 2

• GDPR is a privacy regulation which grants how information is processed
• Data protection act controls how data can be used

Question 3

What does the Data Protection Act state?

Answer 3

• Files must be up to date and relevant
• Must not be held for longer than necessary
• Must be stored in a safe location
• Must not be kept for longer than required

Question 4

8 individual rights within the Data Protection Act?

Answer 4

• Right to be informed
• Right to access
• Right to rectification
• Right to erasure
• Right to restrict processing
• Right to data portability
• Right to object
• Rights related to automated decision making including profiling

Question 5

How do you deal with a breach in GDPR?

Answer 5

• Review and identify the breach
• Try to resolve the issue
• Notify the Information Commissioners Officer (ICO) within 72 hours
• Notify the affected parties
• Learn from the breach and implement changes to prevent this happening again
• Make sure the breach is documented as the report may form part of an investigation.

Question 6

What are the penalties of a breach?

Answer 6

• Information Commissioners Office (ICO)
• Fine the higher of up to 17.5m or 4% global turnover

Question 7

How should office files be stored?

Answer 7

• In an internal filling system, backed up by a cloud system or paper filling
• A fire wall should also be in place to prevent people outside of the organisation hacking into the system.

Question 8

How do you protect electronic data?

Answer 8

I would back up my data on a cloud system, strong password protection, antivirus software/ firewall and a secure wifi connection.