Freedom of info

Question 1

Freedom of Information Act date

Answer 1

2000

Question 2

What does Freedom of Information do?

Answer 2

Access to information of PUBLIC bodies

Question 3

Are there exceptions? Name the two.

Answer 3

Yes. Absolute and qualified exceptions.

Question 4

Protection of Freedoms Act 2012 part 6 did what….

Answer 4

Added new provisions to Freedom of Information:

DATASETS

Question 5

Name some examples of absolute exemptions?

Answer 5

Confidential information
If the info could already be obtained under the Data Protection Act
Is contained in court records

Question 6

Name the two types of qualified examples

Answer 6

Class

Harm

Question 7

How many FOI requests in Q1 2016

Answer 7

12791

Question 8

What is the most common exemption?

Answer 8

46% about personal information

Question 9

When was Environment Information Regulations?

Answer 9

2004

Question 10

What is a publication scheme?

Answer 10

Commitment to make certain information available.

Question 11

How can information be requested for FOI?

Answer 11

letter or email

Question 12

How long should information take in FOI?

Answer 12

20 days unless there is delay

Question 13

Are charges allowed?

Answer 13

Yes. Small.

Question 14

Which US Amendment protects for some level of privacy?

Answer 14

Fourth

Question 15

What is the agency responsible for data protection?

Answer 15

Information Commissioners Office

ICO

Question 16

Data Protection Act date?

Answer 16

1998

Question 17

What does Data Protect Act (1998) ensure?

Answer 17

that information is used in the way it was originally given

Question 18

When was Data Protection Act updated and why?

Answer 18

2018

To align with GDPR

Question 19

What does GDPR stand for?

Answer 19

General Data Protection Regulation

Question 20

When was GDPR introduced?

Answer 20

25th May 2018

Question 21

What does GDPR cover?

Answer 21

Personal data

Question 22

What is personal data?

Answer 22

Information relation to a person who can be identified or who can indirectly identified.

Question 23

Does company information relate to personal data?

Answer 23

Nope

Question 24

Give some examples of personal data

Answer 24

Biography
Looks
Where you work
Education

Question 25

What is a data controller?

Answer 25

Someone who determines the purpose and means of processing data

Question 26

What is a data processor?

Answer 26

Responsible for processing personal data on behalf of a controller

Question 27

Does GDPR apply to public and private?

Answer 27

Yes

Question 28

GDPR: What about in EU/Out of EU for

Answer 28

It's about EU citizens or if you operate in the EU.

Question 29

What does GDPR not apply for?

Answer 29

Processing carried out by a person for themselves National security stuff Law Enforcement Directive

Question 30

How is an individual 'identifiable'?

Answer 30

If they can be distinguished from others

Question 31

What is GDPR max fine?

Answer 31

€20 million or 4% of company's worldwide turnover.

Question 32

What are the seven GDPR principles?

Answer 32

``` Lawfulness, fairness, transparency Purpose limitation Data minimisation Accuracy Storage limitation Integrity and confidence Accountability ```

Question 33

What is point of lawfulness and GDPR?

Answer 33

Assures people don't do naughty things with data. Must be clear and open about uses.

Question 34

What is point of purpose limitation and GDPR?

Answer 34

you must be clear from the start what data you're using. you can only use it for other things if: compatible, consent, clear legally

Question 35

What is point of minimisation and GDPR?

Answer 35

data must be adequate relevant limited

Question 36

What is point of accuracy and GDPR?

Answer 36

you must be sure data is accurate | you need to take steps to correct or erase errors

Question 37

What is point of storage limitation and GDPR?

Answer 37

don't keep data for too long

Question 38

What is point of integrity and GDPR?

Answer 38

Security is important

Question 39

What is point of accountability and GDPR?

Answer 39

you need to prove you are adhering to GDPR

Question 40

how many things for lawful basis for processing need apply?

Answer 40

at least one

Question 41

name 6 lawful basis for processing

Answer 41

``` consent contract legal obligation vital interests public task legit interest ```

Question 42

What is point of right to be informed and GDPR?

Answer 42

you have a right to know how your data is being used

Question 43

What is point of right to access informed and GDPR?

Answer 43

subject access - you can access data held on you. YOU CANNOT BE CHARGED

Question 44

What is point of right to rectification informed and GDPR?

Answer 44

you can make adjustments to inaccurate info

Question 45

What is point of right to erasure informed and GDPR?

Answer 45

the right to be forgotton

Question 46

is the right to erasure absolute?

Answer 46

no

Question 47

Where does erasure not apply?

Answer 47

legal bits, freedom of expression, public interest

Question 48

What is point of right to restrict and GDPR?

Answer 48

you can restrict or suppress your data

Question 49

What is point of right to object and GDPR?

Answer 49

you can object to the way your data is being used you can stop direct marketing

Question 50

What is point of right to portability and GDPR?

Answer 50

the right to reuse data across services. information only applies to information you've supplied the controller.

Question 51

is GDPR all encompassing

Answer 51

no. there can be exemptions made by EU member states