LO4 - 4.1 UK Legislation AAI side

Question 1

What are the 6 principles of the data protection ACT

Answer 1

1. Data must be collected lawfully and processed fairly
2. Collected data must only be used for the reasons specified
3. Data must be relevant and not excessive
4. Data must be accurate and up-to-date
   5.Data must not be stored for longer than necessary
5. Data must be stored and processed securely

Question 2

Actions organisations must take to stick to the DPA

Answer 2

1. Appoint a data protection officer
   2.Strong security measure = physical or digital protection methods
2. Training staff
3. People have the right to change their data if it is incorrect
   5.People have a right to request their data

Question 3

Computer misuse Act 1990

Answer 3

-Attempts to stop and punish those who use computers inappropriately
-Breaking this act could result in fines and a jail sentence if committed purposely

Question 4

Main principles of the CMA 1990

Answer 4

1. no unauthorised access to data
2. no unauthorised access to data that could be used for further illegal activities
3. no unauthorised modification of data

Question 5

Freedom of information act 2000

Answer 5

-allows people to request public authorities to release information such a local councils
-formally submitted by letter or email
-reply is required withing 20 days

Question 6

Regulation of investigatory powers act 2000 - RIPA

Answer 6

-used to monitor and access online communication of suspected criminals
-grants the following powers
encrypted data may be accessed
install surveillance to track online activity

Question 7

Copyright, Designs and Patents Act 1988

Answer 7

-makes it a criminal offence to copy work that is not your own without the permission of creator
-prohibits = making copies of copyright material
importing and downloading illegally copied material

Question 8

Information commissioners office (ICO) codes of practice

Answer 8

-is senior government in charge of countrys freedom of information requests and protection of personal data
- publishes codes of practice about various data protection and privacy topics

Question 9

Protection of Freedoms Act 2012

Answer 9

1. states how biometric data is stored, handled and collected
2. creates new regulations for CCTV and ANPR (automatic number plate recognition)
3. Disclosure and barring service (dbs) was created to run background checks
4. extends freedom of information act 2000

Question 10

Privacy and electronic communications regulations 2003 - updated in 2011

Answer 10

-offence to directly contact an individual unless they have opted to receive communication
- companies clearly state who they are when contacting customers
-must explain how cookies are used on their website
-only contact customers through communication channels

Question 11

Equality Act 2010

Answer 11

-legally protects people from discrimination in the workplace and wider society
-protected characteristics
-aim to end discrimination