5.5 Flashcards
What is the information life cycle
Creation and receipt
Distribution
Use
Maintenance
What is the PIA
Privacy impact assessment
Almost everything can affect privacy
Privacy risks needs to be identified in each initiative
This data classification is used for data that may include trade secrets and belong to an organization
Proprietary
Data classification that can be used to identify an individual
PII
Personally Identifiable information
Data classification for health information associated with an individual
PHI
Protected Health Information
True or False Public/ Unclassified data classification is for data that would be internal company information
False, Public information has no restrictions on viewing the data
what type of data would be classified with private data classifications
Data that may have restricted access. May require a non-disclosure agreement (NDA)
Name some sensitive data classification
Intellectual property, PII, PHI
True or False. Confidential data classification classifies data that is very sensitive
True
Critical data classification means?
This data type should always be available
Financial Information data classification
Customer financial details
This data classification is for open data and can be protected by law
Government data
This data classification is for data you would classify with customer data
Customer data
Name 3 data roles
Data controller
Data processor
Payroll controller and processor
What is the difference between the data controller and data processor
Data controller is responsible for managing the purpose and means by which personal data is processed. Data processor processes data on behalf of the data controller