Data Protection Flashcards
What is Data Protection?
Process of safeguarding important information from harm
What are Data Classifications?
Categories assigned to data based on it’s value to the organization and the damage it could cause to the org if the information were to be disclosed.
What is sensitive data?
Any information that could result in a damages if disclosed
What are 2 classification schemes?
Commercial Business and Government
What are the common levels associated with commercial businesses?
- Public data: Zero repercussions if disclosed to the public
- Sensitive Data: Minimal impact if released. Something like company financial data
- Private Data: Data that should only be used within an organization.
- Confidential Data: Data that will harm the organization if released to the public. Something like trade secrets
- Critical Data: Data that can usually be used for profit. Something like credit card numbers
What are the common levels associated with the government?
- Unclassified: Data that can be released to the public or is under the freedom of information act.
- Sensitive but Classified: Data that would not harm national security if released but could harm the individual it’s about.
- Confidential: Data that could seriously affect the government if unauthorized releases occur.
- Secret: Data that could be seriously damage national security.
- Top Secret: Data that will damage national security if released.
What is the lifecycle of data?
- Collection
- Storage
- Destruction
What is data ownership?
the responsibility and control over data that an organization has, ensuring data quality, security, and compliance.
What are the roles associated with Data Ownership?
- Data owner
- Data controller
- Data processors
- Data Stewards
- Data Custodian
- Privacy Officer
Who is the data owner?
Senior exec role that is responsible for maintaining the confidentiality, integrity, availability, and privacy of information
Who is the data controller?
Entity that is responsible for deciding the purposes and methods of data storage, collection, usage, and guaranteeing process legality.
Who are the data processors?
Group or individual hired by the data controller to help with tasks like collecting, storing, or analyzing data.
Who is the data steward?
Focused on data quality and associated data
Who is the data custodian?
Responsible for handling the management of the system on which data assets are stored.
Who is the privacy officer?
Those responsible for the oversight of any kind of privacy related data such as PII. They’re on the hook for data breaches.