What are the key principles of the Data Protection Act?
At a glance
- Lawfulness, fairness and transparency.
- Purpose limitation.
- Data minimisation.
- Storage limitation.
- Integrity and confidentiality (security)
What is the purpose of the Data Protection Act?
The Data Protection Act (DPA) is a United Kingdom Act of Parliament which was passed in 1988. It was developed to control how personal or customer information is used by organisations or government bodies. It protects people and lays down rules about how data about people can be used.
What does the Data Protection Act cover?
The Data Protection Act 2018 controls how your personal information is used by organisations, businesses or the government. … They must make sure the information is: used fairly, lawfully and transparently. used for specified, explicit purposes.
Who is exempt from the Data Protection Act?
Some personal data has partial exemption from the rules of the DPA . The main examples of this are: The taxman or police do not have to disclose information held or processed to prevent crime or taxation fraud. Criminals cannot see their police files.
What’s the difference between GDPR and Data Protection Act?
Whereas the Data Protection Act only pertains to information used to identify an individual or their personal details, GDPR broadens that scope to include online identification markers, location data, genetic information and more.
What is GDPR compliance checklist?
GDPR compliance requires that companies who process or handle personal data and have more than 10-15 employees must appoint a Data Protection Officer (DPO). A DPO will help with the maintenance and regular monitoring of data subjects as well as the processing of special categories of data on a large scale.
What is RA 10173 all about?
10173 or the Data Privacy Act of 2012 (DPA) “to protect the fundamental human right to privacy of communication while ensuring free flow of information to promote innovation and growth [and] the [State’s] inherent obligation to ensure that personal information in information and communications systems in government and …
What types of data are covered by the Data Protection Act?
The Data Protection Act covers data held electronically and in hard copy, regardless of where data is held. It covers data held on and off campus, and on employees’ or students’ mobile devices, so long as it is held for University purposes, regardless of the ownership of the device on which it is stored.
How do you explain data protection?
Data protection is a set of strategies and processes you can use to secure the privacy, availability, and integrity of your data. It is sometimes also called data security or information privacy. A data protection strategy is vital for any organization that collects, handles, or stores sensitive data.