Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

ACA Law > 11f The Data Protection Act 2018 > Flashcards

11f The Data Protection Act 2018 Flashcards

1
Q

What is personal data?

A

Data relating to an individual who can be identified from the data with or without other information in the data controllers possession.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is data controller?

A

A person who alone, jointly or in common with other persons determine the purposes for and manner for which data is to be processed.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a data processor?

A

Person other than the employee of the data controller who processes the data provided by the data controller.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What should you do when finding out there is a breach of the data protection rules?

A
  1. Asses the severity
  2. Any breach should be reported to ICO within 72 hours.
  3. Inform directly without delay who is affected if there is a breach likely to be of high risk to the rights and freedoms of data subjects.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What happens if the Data Protection Act is not complied with?

A

This is a criminal offence leading to a fine of up to £17 million or 4% of the organisations global turnover.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What data does the act apply to?

A

Computer based and manual files but not domestic use.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What principles must all data be processed in line with?

A
  1. Lawful, fairness and transparency - held for valid reasoning, processed fairly and must be transparent as to why they’re holding it.
  2. Purpose limitation - Grounds for holding must be specified and explicit. Purpose must be provided up front and if changed consent is obtained.
  3. Data minimisation - data adequate to fulfil its purpose, relevant to that purpose and not excessive.
  4. Accuracy - steps taken to make sure data is correct and not misleading.
  5. Storage limitation - not held for longer than necessary.
  6. Integrity and confidentiality - adequate security measures to protect against risks to the data.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the rights of the data subjects?

A
  • To be informed: why their datas being collected, how long it’s being retained for and who it’s shared with.
  • Gain access to data held on them, request can be verbal or writing and should be provided within 1 month.
  • Correct/complete data held (in some circumstances can be rejected). Request should be responded to within 1 month.
  • Request data to be erased and should be given response within 1 month.
  • Request data is held not processed.
  • Obtain data given to data controller and use it for another service.
  • Object the use of their data.
  • When used to make automated decisions, individual can request info about the processing of data, request human intervention and challenge decisions made based on automated services.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What data is exempt from the Data Protection Act?

A
  • Info kept for personal, recreational, family and household use.
  • Data relating to national security.
  • Info used for prevention of crime.
  • Info used for assessments and collection of tax.
  • Confidential references.v
  • Processing of employee data by employers
  • Academic institutions processing for academic puporses
  • Scientific and historic research organisations
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

ACA Law (56 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions