SLR16 Flashcards

1
Q

What is the DPA

A

Data Protection Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the three defining roles of the DPA

A
  1. The data subject
  2. The data controller
  3. The data commissioner
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

In terms of the DPA: who is the data subject

A

The individual who has their data stored somewhere outside of their control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

In terms of the DPA: who is the data controller

A

The data controller determines what data an organisation can collect, how this data is collected, how it is processed and stored

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

In terms of the DPA: who is the data commissioner

A

The data commissioner has the power to enforce the data protection act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Who does the data commissioner report to and who are they appointed by

A

Directly to parliament and the crown

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the two categories for data in the DPA

A

Personal data
Sensitive data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Name some of the 5 examples of personal data

A
  1. Name
  2. Address
  3. Banking details
  4. Data of birth
  5. Financial transactions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Name some of the 8 examples of sensitive data

A
  1. Nationality
  2. Ethnicity
  3. Political beliefs
  4. Trade union membership
  5. Genetics
  6. Biometrics
  7. Health
  8. Sexual orientation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Why was the 1998 British DPA updated in 2018

A

To bring it into line with the 2015 EU GDPR as the 1998 version covered most but not all of it

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What does GDPR mean

A

General Data Protection Regulation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

State the 8 steps a organisation must take when handling data (REWORK THIS CARD)

A
  1. Collected and used fairly and within the restraints of the law
  2. Only held for specific reasons
  3. Only used for the registered purpose it was intended for
  4. Adequate, relevant and not excessive
  5. Kept accurate and up to date
  6. Not kept longer than necessary
  7. Kept safe and secure
  8. No transfer outside the EEA unless the country has data protection
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

In the DPA what are the 7 rights of the data subjects

A
  1. Right of subject access
  2. Right of correction
  3. Right to prevent distress
  4. Right to prevent direct marketing
  5. Right to prevent automatic decisions
  6. Right of complaint to the information commissioner
  7. Right to compensation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly