Data Protection Flashcards
What people/ entities enjoy data protection rights?
Live humans
What data is protected under GDPR?
Personal data
Give examples of what counts as personal data.
Email, phone number, address, name, genetic info, dna, cctv footage of you, your image
What does processing involve?
Any verb, anything ending in -ing; restricting, gathering, filing - once you are doing it with the intention
What specific features does profiling focus on?
Age, gender, ethnic origin, religion, race, politics, health, employment status
Give examples of special categories of data.
**Section 9 **- what we have just listed in the previous question - can’t profile us on this unless we consent
“section 9 data includes ____” - answer: health, race, age, gender etc
What do the following stand for - GDPR, LSA, CSA, OSS
GDPR: general data protection regulation
LSA: lead supervisory authority
CSA: concerned supervisory authority
OSS: one stop shop
When does GDPR apply?
Either the supplier, customer / subject, or processing is in / takes place in Europe
Name the regs that cover electronic communications.
The e-privacy regulations 2011
What does reg 13 say about spam?
Unsolicited communication - spam
Only when someone consents to spam you are allowed to spam them.
When can you spam an ordinary human?
Only when they consent to it
When can you spam a business?
Any time except for mobile phones
12 month rule on spamming?
If I sold you goods or services in the last 12 months, I can spam you without your consent once the spam is in relation to the product or something similar
When spamming, must have the option to unsubscribe
What piece of law orders your providers to retain phone and internet traffic?
The data retention act 2011
How long must your phone traffic be kept for?
2 years