Topic 27 - Protecting data: Legislation and codes of practice Flashcards
What is Data protection supported through?
Data protection is supported through legislation.
What can happen with Non-compliance?
Non-compliance is very serious and can be punished with large fines and imprisonment
What is the main data protection laws?
(Legislation for protecting data)
The main data protection laws are the Data Protection Act 2018, Which superseded the Data Protection Act 1998, and which is an extension to the EU General Data Protection Regulation (GDPR), and the Computer Misuse Act
What is the main 3 Roles of the Data protection Act 2018?
(Legislation for protecting data)
- The main UK legislation for protection of personal data
- Protects the privacy of individuals personal data held by others
- Gives rights to individuals on what data is collected and how their data is used
What are the 3 impacts on the Organisation from the Data protection Act 2018?
(Legislation for protecting data)
- Increase costs to meet requirements for data security.
- Limited in how much data can be gathered and how it is used
- Fines of up to £17 million if in breach of the law
What are the 2 impacts on the Individuals from the Data protection Act 2018?
(Legislation for protecting data)
- Personal data collected by others is likely to be kept secure and not be misused
- Compensation can be claimed for any harm caused for any harm caused due to misuse of an individual’s data
What is the main 2 Roles of the Computer Misuse Act 1990?
(Legislation for protecting data)
- Protects against attacks on IT systems used to gain unauthorised access and steal or cause damage to data
- Covers threats like hacking and spreading malware
What are the 2 impacts on the Organisation from the Computer Misuse Act 1990?
(Legislation for protecting data)
- Organisations computer systems are more secure due to the deterrent of legal repercussions for attacks on systems
- Requires organisations (and their employees) to develop and adhere to effective security policies
What are the 2 impacts on the Individuals from the Computer Misuse Act 1990?
(Legislation for protecting data)
- Provides production from attacks to an individual’s computer systems
- These who carry out attacks can face unlimited fines and up to 10 years in prison
What happens when data protection fails?
(When data protection fails)
In 2007, families in the UK were informed of a potentially massive fraud alert. This happened after two computer discs which held the personal details of all UK families with a child under 16 went missing
What data does Child Benefit data include?
The child Benefit data includes:
- name
- address
- date of birth
- National Insurance number
- in some cases, bank details of 25 million people and 7.25 million families
What data does Child Benefit data include?
The child Benefit data includes:
- name
- address
- date of birth
- National Insurance number
- in some cases, bank details of 25 million people and 7.25 million families
What did Alastair Darling issue?
On behalf of the government, the then chancellor, Alastair Darling, issued an apology and an emergency statement in which the incident was describe as a ‘catastrophic’ failure
What does Professional bodies and the information Commissioner’s Office (ICO) define?
(Codes of practice)
Professional bodies and the information Commissioner’s Office (ICO) define codes of practice for how organisations handle. share and protect data
What Is the 1st Codes of practice are not legal requirement’s - they are best practice guidelines, which aim to: ?
- Help support compliance with the Data Protection Act 2018, Computer Misuse Act and other related legislation
