Data Management Flashcards
What is data storage and security?
• keeping date safe from corruption
• controlled access to data
• ensure privacy and protection
What are the different types of data security that GcW use?
• regular backups off site
• firewalls
• disk encryption - encrypting date Ona secure hardrice
What is copyright?
A set of exclusive rights granted to the author or creator of any original work, including the right to copy
Form of intellectual property
Crown copyright where all government laws and policies are located
What is the Data protection act 2018 and what is UK general data protection regulation?
• UK GDPR is covered by the Data Protection Act 2018
• it aims to create a single data protection regime affecting businesses and empower individuals to take control of how their data is used by third parties
• it gives people the right to be informed
What are 3 of the principles of GDPR?
• processed lawfully fairly and in a transparent manner
• adequate relevant and kept to what is limited
• accurate and where necessary kept up to date
What are individuals rights under UK GDPR?
- Right to be informed
- Right of access
- Right to rectification
- Right of erasure
- Right to restrict processing
- Right to data portability
- Right to object
- Rights to automated decision making and profiling
Who are the key persons outlined in GDPR?
Controller - entity or person that determines the purpose and needs of processing data e.g GCw
Processor - person or entity that processes personal data on behalf of the controller e.g third party
Data protection officer - this is a leadership role required by GDPR and DPA and is responsible for overseeing the data protection approach and implementation e.g Kate costen
What is an NDA?
Non-disclosure agreement - which is a legally binding contract between two parties relating to sensitive information
Creates a confidential agreement between a person who has sensitive information and a person who has access to that information
How do data breaches happen?
• Employee mistakes
• equipment failure
• hacking
• cyber attacks
• malware
• loss of equipment
Who do you report a personal breach to?
Firstly the Data Protection Officer
And if there is potential for it to cause harm or damage to the Information Commissioners Office within 72 hours of the breach
How is GDPR policed and enforced?
• by the Information commissioners Office (ICO)
What is the GDPR and DPA penalties and fines?
Up to 4% of annual global turnover or £17.5 million pounds (whichever higher)
What is the freedom of information act 2008?
Gives individuals the right of access to information held by public bodies
