Data Management

Question 1

Name 5 of the 8 individual rights under UK GDPR?

Answer 1

1. Right to be informed
2. Right to access
3. Right to rectification
4. Right to erasure
5. Right to restrict processing
6. Right to data proportionality
7. Right to object
8. Rights to Automated Decision Making and profiling

Question 2

What are the UK GDPR Principles?

Answer 2

That data must be:
1. Stored and processed lawfully
2. Collected for specified purposes
3. Accurate and up to date

Question 3

What are the maximum fines for firms that breach the Bribery Act 2010?

Answer 3

Unlimited fines

Question 4

What is the principle of an NDA? (Non-Disclosure Agreement)

Answer 4

A legally enforceable contract between two parties relating to sensitive information.

Question 5

What would happen if an NDA was breached?

Answer 5

The party who was ‘harmed’ could take legal action and seek damages for any loss that incurred

Question 6

Who is the UK GDPR regulator?

Answer 6

Information Commissioner’s Office (ICO)

Question 7

What is the Data Protection Act 2018?

Answer 7

It is the ruling UK legislation regarding the protection of personal data

Question 8

What was the effect of Brexit on EU GDPR?

Answer 8

UK GDPR is an adoption of EU GDPR following Brexit

Question 9

What is the Freedom of Information Act 2000?

Answer 9

It gives individuals the right to access information held by public bodies

Question 10

What is the difference between Personal and Sensitive Data?

Answer 10

• Personal data - think ‘every day data’ e.g. Name, Email address, Date of Birth
• Sensitive Data - think ‘private data’ e.g. Political Views, Religion etc.

Question 11

What would you do if you found a data breach?

Answer 11

• Report to my IT Team
• Document what data and where it was breached
• Must report to the ICO within 72 Hours

Question 12

What fines for there for firms who breached UK GDPR?

Answer 12

• 4% of turnover or
• £17.5m of turnover whichever is greater