Data Protection Act 1998 Flashcards
LO2
What is the Data Protection Act 1998?
Aims to ensure data is used as it should be.
Only shared with authorised individuals who need to know.
Kept safe and secure.
What are the 8 principles of DPA 1998?
Fair and Lawful Processing=
Purpose Limitation=
Data Minimisation=
Accuracy=
Storage Limitation=
Rights of Individuals=
Security=
International Transfers=
What is the General Data Protection Regulation (GDPR)?
The law that tells you what you must do when you handle personal data.
All organisations that collect or use personal data must comply with it.
Must: process the least possible amount of personal data, report any security breaches, only keep it for as long as you need to.
What are the 7 principles of GDPR?
Lawfulness, fairness, transparency.
Purpose Limitation.
Data Minimisation.
Accuracy.
Storage Limitation.
Integrity, confidentiality
Accountability
What is the Information Commissioner’s Office (ICO)?
The UK’s regulator for data protection.
Ensures organisations comply with data laws and protects individual’s privacy rights.
What are the main roles of ICO?
- Enforcing data protection laws.
- Issuing guidance.
- Investigating complaints.
- Imposing fines.
5.Raising public awareness.