Data Protection Act 1998

Question 1

What is the Data Protection Act 1998?

Answer 1

Aims to ensure data is used as it should be.

Only shared with authorised individuals who need to know.

Kept safe and secure.

Question 2

What are the 8 principles of DPA 1998?

Answer 2

Fair and Lawful Processing=

Purpose Limitation=

Data Minimisation=

Accuracy=

Storage Limitation=

Rights of Individuals=

Security=

International Transfers=

Question 3

What is the General Data Protection Regulation (GDPR)?

Answer 3

The law that tells you what you must do when you handle personal data.

All organisations that collect or use personal data must comply with it.

Must: process the least possible amount of personal data, report any security breaches, only keep it for as long as you need to.

Question 4

What are the 7 principles of GDPR?

Answer 4

Lawfulness, fairness, transparency.

Purpose Limitation.

Data Minimisation.

Accuracy.

Storage Limitation.

Integrity, confidentiality

Accountability

Question 5

What is the Information Commissioner’s Office (ICO)?

Answer 5

The UK’s regulator for data protection.

Ensures organisations comply with data laws and protects individual’s privacy rights.

Question 6

What are the main roles of ICO?

Answer 6

1. Enforcing data protection laws.
2. Issuing guidance.
3. Investigating complaints.
4. Imposing fines.

5.Raising public awareness.