Data managenments

Question 1

what is GDPR

Answer 1

General data protection regulations of EU law (came in 25th May 2018)

Question 2

What is DPA

Answer 2

Data protection act 2018

Question 3

What are the differences between GDRP and DPA

Answer 3

They are similar however DPA is more tailor to the UK

Question 4

What are the 7 principles of GDPR

Answer 4

Lawfulness, fairness and transparency

· Purpose limitation

· Data minimisation

· Accuracy

· Storage limitation

· Integrity and confidentiality (security)

· Accountability

Question 5

what are the differences between GDPR and DPA

Answer 5

Child consent
The GDPR states that a child can consent to data processing at age 16, whilst the DPA sets this at 13.

Penalties
GDPA
€20 million, or four per cent of annual turnover

DPA
£500,000, or one per cent of annual turnover

Question 6

what effects has the new legislation had on your company

Answer 6

• Data will be held in as few places as necessary. Staff should not create any unnecessary additional data sets.
• Staff should take every opportunity to ensure data is updated. For instance, by confirming a customer’s details when they call and updating Greentree.
• Data should be updated as inaccuracies are discovered. For instance, if a customer can no longer be reached on their stored telephone number, it should be removed from Greentree.
• Data printouts should be shredded and disposed of securely when no longer required.
• When not required, the paper or files containing personal data should be kept in a locked drawer or filing cabinet.
• Employees should make sure paper and printouts are not left where unauthorised people could see them, like on a printer or on a desk with public access.

Raise awareness across the business

Question 7

how is data managed and protected in your firm?

Answer 7

secure document storage
back up of documents
sharing/ confidentiality of documentation
data sharing with internal and external teams
paper forms