Topic 27 - Protecting data: Legislation and codes of practice Flashcards

1
Q

What is Data protection supported through?

A

Data protection is supported through legislation.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What can happen with Non-compliance?

A

Non-compliance is very serious and can be punished with large fines and imprisonment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the main data protection laws?
(Legislation for protecting data)

A

The main data protection laws are the Data Protection Act 2018, Which superseded the Data Protection Act 1998, and which is an extension to the EU General Data Protection Regulation (GDPR), and the Computer Misuse Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the main 3 Roles of the Data protection Act 2018?
(Legislation for protecting data)

A
  • The main UK legislation for protection of personal data
  • Protects the privacy of individuals personal data held by others
  • Gives rights to individuals on what data is collected and how their data is used
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the 3 impacts on the Organisation from the Data protection Act 2018?
(Legislation for protecting data)

A
  • Increase costs to meet requirements for data security.
  • Limited in how much data can be gathered and how it is used
  • Fines of up to £17 million if in breach of the law
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the 2 impacts on the Individuals from the Data protection Act 2018?
(Legislation for protecting data)

A
  • Personal data collected by others is likely to be kept secure and not be misused
  • Compensation can be claimed for any harm caused for any harm caused due to misuse of an individual’s data
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the main 2 Roles of the Computer Misuse Act 1990?
(Legislation for protecting data)

A
  • Protects against attacks on IT systems used to gain unauthorised access and steal or cause damage to data
  • Covers threats like hacking and spreading malware
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the 2 impacts on the Organisation from the Computer Misuse Act 1990?
(Legislation for protecting data)

A
  • Organisations computer systems are more secure due to the deterrent of legal repercussions for attacks on systems
  • Requires organisations (and their employees) to develop and adhere to effective security policies
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the 2 impacts on the Individuals from the Computer Misuse Act 1990?
(Legislation for protecting data)

A
  • Provides production from attacks to an individual’s computer systems
  • These who carry out attacks can face unlimited fines and up to 10 years in prison
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What happens when data protection fails?
(When data protection fails)

A

In 2007, families in the UK were informed of a potentially massive fraud alert. This happened after two computer discs which held the personal details of all UK families with a child under 16 went missing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What data does Child Benefit data include?

A

The child Benefit data includes:

  • name
  • address
  • date of birth
  • National Insurance number
  • in some cases, bank details of 25 million people and 7.25 million families
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What data does Child Benefit data include?

A

The child Benefit data includes:

  • name
  • address
  • date of birth
  • National Insurance number
  • in some cases, bank details of 25 million people and 7.25 million families
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What did Alastair Darling issue?

A

On behalf of the government, the then chancellor, Alastair Darling, issued an apology and an emergency statement in which the incident was describe as a ‘catastrophic’ failure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What does Professional bodies and the information Commissioner’s Office (ICO) define?
(Codes of practice)

A

Professional bodies and the information Commissioner’s Office (ICO) define codes of practice for how organisations handle. share and protect data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What Is the 1st Codes of practice are not legal requirement’s - they are best practice guidelines, which aim to: ?

A
  • Help support compliance with the Data Protection Act 2018, Computer Misuse Act and other related legislation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What Is the 2nd Codes of practice are not legal requirement’s - they are best practice guidelines, which aim to: ?

A
  • Ensure data is not mishandled, which would lead to a negative impact on an organisation’s reputation
16
Q

What Is the 3rd Codes of practice are not legal requirement’s - they are best practice guidelines, which aim to: ?

A
  • Give individuals confidence that the data they supply to organisation’s reputation