Law and Governance 3

What does ICO stand for?
Information Covered Objections
Information Commissioners Office
Informed Consent Observed
Information Confidentiality Obtained
Information Commissioners Office
What is the age of consent for data processing in the UK?
19
16
13
18
13
When was the Data Protection Act last updated
2018
2000
1998
2022
2018
Which of the following is the terminology used to define an organisation that determines the use of personal data?
authority
controller
commission
processor
controller
What does PII stand for ?
Private Information Instance
Personal Identity Information
Protected Identity Information
Personally Identifiable Information
Personally Identifiable Information
Which of the following is not a type of PII?
IP address
photo
job title
name
job title
Principal 3 - Data Minimisation states:
personal data must be processed by the minimum number of 3rd parties possible
personal data shall be limited to only being held for the duration of time needed
personal data shall be limited to what is necessary for the purpose of processing
personal data must be exposed to minimal risk to accidental modification
personal data shall be limited to what is necessary for the purpose of processing
To join a mailing list, an organisation asks you for the following: name, email address, date of birth, physicall address, phone number which principal are they not following?
Data Minimisation
Purpose Limitation
Accountability
Data Accuracy
Data Minimisation
A company is victim to a breach where a database full of PII data is compromised due to default DB credentials, which GDPR principal has not been followed?
Accuracy
Purpose Limitation
Integrity and Confidentiality
Storage Limitation
Integrity and Confidentiality
Who does GDPR apply to?
only EU countries
any business selling goods/services to the EU
All countries
The UK
any business selling goods/services to the EU
Your Score
Score Label
Score Summary