T5 | Role of Legislation in Protecting Data Flashcards

1
Q

Importance of data security

A

Organisations have a right to keep our data safe and secure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Data Protection Act 2018 (who does it affect?)

A

Affects all organisations that hold personal data about people

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What does the Data Protection Act state?

A
  1. Processed lawfully
  2. Collected for specified purposes
  3. Adequate, relevant and not excessive
  4. Accurate and up to date
  5. Not kept for longer than necessary
  6. Processed in a manner that ensures appropriate security
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a Data Controller?

A

The organisation/person responsible for how data is collected, held and used (responsible for compliance and must be able to show compliance)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Not complying punishments

A

Failure to comply can mean fines of up to £20,000,000 or 4% of turnover

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Keeping data accurate procedures:

A
  1. Cross-checking and proof reading

2. Validation and verification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How can data be kept accurate? (forms)

A

Sending out forms when:

  1. leave employment
  2. change/renewal of contract
  3. special event occurs
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Impact on individuals (Data Protection Act):

A
  1. Right to delete personal data (withdraw consent)

2. Data cannot be passed onto 3rd parties without consent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Impact on organisations (Data Protection Act):

A
  1. Yearly fee
  2. Every company must carry out DPIA (Data Protection Impact Assessment)
  3. Websites must have privacy policy
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

COP (Code of Practice)

A

Every organisation will have a code of practice which helps their members know how and why their data is used

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Impacts of Code of Practice on individuals

A
  1. Makes people act professionally

2. Promotes good work practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Impacts of Code of Practice on organisations

A
  1. Improve standards
  2. Give competitive advantage
  3. Reduce fine risk
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Computer Misuse Act 1990

A

Gain unauthorised access to computer material or modify computer material (e.g. DDoS, Brute force, fraud)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Penalties for Computer Misuse Act 1990

A
  1. Unauthorised access (make, supply, obtain): 2 years + Fine
  2. Unauthorised access and commit further offences: 5 years + Fine
  3. Unauthorised modification: 10 years + Fine
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

The Copyright Regulations 1992

A

Programs are only allowed to be copied/changed with license or permission

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Copyright timeframe

A

Lasts up to 70 years after the owner dies

17
Q

Board directors of companies

A

They can be prosecuted for allowing illegal software copies in the company