The Data Protection Act 1998

Question 1

what is data protection?

Answer 1

a law designed to protect personal data stored on computers or in an organised paper filing system.

Question 2

why was it created?

Answer 2

to protect individuals from misuse of this data.

Question 3

what are the key aspects?

Answer 3

1. processed fairly and lawfully
2. accurate and kept up to date
3. kept for no longer than necessary

Question 4

what is the general data protection regulations (GDPR)?

Answer 4

Controls how your personal data is used by an organisation.

Question 5

what are GDPR principles?

Answer 5

1. data minimisation
2. accuracy
3. storage limitation
4. integrity and confidentiality
5. accountability
6. purpose limitation
7. fairness, lawfulness and transparency

Question 6

what does GDPR mean for service users?

Answer 6

Stronger legal protection for more sensitive information such as race, religious beliefs, sex life

Question 7

what does GDPR mean for service providers?

Answer 7

1. Process the least possible amount of personal data
2. Only keep it for as long as they need to
3. Make sure they process personal data in a lawful way

Question 8

why is data protection important?

Answer 8

1. good practice for organisations
2. promotes trust
3. prevents fraud and cyber crimes