AS Computing: Data Protection Act 1998

Data Protection Act 1998

Posted on Tuesday, 6 December 2011 by Mrs Nunn | 0 comments

Data stored about an individual is personal data.

Each of us has a lot of personal information stored about us - birth; marriage; employment; bank details; driving details; taxes; etc...

Safeguards to help prevent the misuse of files of personal data include...

Ensuring there is a password system of access

Any access to files should be audited - details of who accessed the files and when.

Computer users who store personal data must register with the Data Protection Register.

The organisation storing the data has obligations..

not to store or process data other than for a lawful purpose
to obtain and process data fairly and lawfully
to store only data that is relevant to the stated purpose
not to infringe the rights of the data subject
to make sure the data is accurate and up-to-date
not to hold the data longer than necessary.
to protect the data with the proper security.
not to send the data abroad other than to EU countries unless they have adequate data protection in place

The individual whose data is stored has rights...

There are some Exemptions from the Data Protection Act :

Task 1
Complete the Data Protection Act worksheet.

Task 2
Exam Question:

June 2007

9. A local council stores data on residents. The data includes names, addresses and the value of their

houses. Employees access the council’s computer system using usernames and passwords and have

access to residents’ data.

(b) The council complies with the Data Protection Act by ensuring that residents’ data is

obtained lawfully, held securely and held for no longer than necessary. Describe three other

ways in which the council must operate in order to comply with the Data Protection Act. [3]