Legal 4.1.2 - Data protection act
Cards (14)
- What are 7 key principles that businesses must follow in DPA 2018:Lawful, and transparentPurpose limitationData minimisationAccuracyStorage limitationIntegrity, and confidentialityAccountability
- As one of the 7 key principles, what is lawfulness and transparency?Data must be collected on legitimate grounds, and do not use it in a way an indiviual cannot reasonably expect
- The GDPR instructs guidelines for countries to make their own data protection laws based on, such as the UKs DPA
- As one of the 7 key principles, what is purpose limitation?The purpose of the data collection must be clear
- As one of the 7 key principles, what is data minimisation?You ensure reasonable steps are taken to ensure data is sufficient for its purpose and is not excessive
- As one of the 7 key principles, what is accuracy?Reasonable steps must be taken to ensure data is accurate
- As one of the 7 key principles, what is storage limitation?Data should only be kept for a certain period of time and removed when no longer needed
- As one of the 7 key principles, what is Integrity and confidientiality?Make clear who keeps data secure and ensure a good disaster recovery policy is implemented
- As one of the 7 key principles, what is accountability?A demonstrable compliance with the law
- Name 8 rights of individuals in DPA?Right to be informedRight of accessRight to rectificationRight to erasureRight to restrict processingRight to data portabilityRight to objectRight over automated decision making
- what is the right to be informed?A data subject must be given clear info regarding what data is being used for
- The ICO is responsible for upholding the DPA
- The maximum fine is 20 million euros or 4% business turnover whichever is largest
- Companies have one month to delete data upon a users request