Data Management

Question 1

What is UK GDPR?

Answer 1

UK General Data Protection Regulation
It aims to create a single data protection regime affecting businesses
Also empowers individuals to take control of their data and how it is used by third parties

Gives people rights to be informed about how their data is used

Question 2

What are 8 individual rights under UK GDPR?
IARERDOA

Answer 2

Right:
- to be Informed
- of Access
- to Rectification
- to Erasure
- to Restrict processing
- to Data portability
- to Object
- to Automated decision making and profiling

Question 3

What covers UK GDPR?

Answer 3

Data Protection Act 2018

Question 4

What key requirements does it impose on firms?

Answer 4

Obligation to conduct data protection impact assessments for high risk of holding data

Firms ,ust be accountable - have to prove they comply with regulations

Data security breaches must be reported to the Information Commissioner’s Office (ICO) within 72 hours where there is a loss of data and harm to individual

Question 5

How much might a company be fined for breaches?

Answer 5

Up to 4% of global turnover or £17.5m, whichever is greater

This is policed by the ICO

Question 6

How does your firm ensure data is secured securely and in accordance with the law?

Answer 6

Cloud storage system
Regular password changes are required
Anti-virus software protection installed
Regular training on phishing

Question 7

You have used what looks like an image from a brochure and architect’s feasibility - have you breached copyright?

Answer 7

No because my firm commissioned these and I asked them before using in my case study

Question 8

What is an NDA?

Answer 8

A legally enforceable contract between two parties relating to sensitive information

Question 9

What happens if an NDA is breached?

Answer 9

The party that was harmed by the breach of the NDA can take legal action to enforce the agreement and seek damages for any losses