Week 11: Social Issues of the Information Age

Questions and Answers

What are the three key aspects of privacy as identified in the content?

Freedom from government oversight, data security, right to be forgotten

Control of personal data, right to anonymity, freedom of speech

Access to public records, right to privacy, control over one’s image

Freedom from intrusion, control of information, freedom from surveillance (correct)

What was one of the main concerns highlighted by the Younger Report in 1972?

Data encryption methods

Compiling personal profiles on single databases (correct)

The rise of mobile technology

Increased social media usage

Which of the following is NOT a right related to privacy as per the content?

Control of information about oneself

Freedom from intrusion

Freedom from data encryption (correct)

Freedom from surveillance

Why was the UK considered a 'data haven' in the 1970s?

No legal control or regulation on data

Which of the following is NOT a lawful basis for processing personal data?

Administrative efficiency

What governmental action was taken by Sweden regarding personal data in 1974?

Banned the export of Swedish personal data to the UK

What must occur for personal data processing to be considered lawful?

There must be specific grounds identified

Which decade marked an increase in the collection and distribution of information as a commercial activity?

1960s

Which of the following is NOT one of the three areas of concern listed in the Younger Report?

Surveillance of public spaces

Which lawful basis for processing personal data is related to protecting someone's life?

Vital interests

Which lawful basis for processing personal data involves performing a task in the public interest?

Public task

What does the right to privacy entail according to the content?

Right to live privately without government interference

If a company processes personal data based on legitimate interests, what is crucial to ensure?

Individual’s interests must not be overridden

How should data be processed to adhere to principles of lawfulness?

Lawfully, fairly, and transparently

What is a requirement when processing data for a contract with the individual?

Processing must be necessary for the contract

Which of the following principles does NOT relate to the processing of personal data?

Profitability

What does the term 'Renewal Term' refer to?

The period after the initial subscription term for a service

What can Zoom do regarding the Services it provides?

Contingently modify the Services without any notice

What is the nature of the agreements known as Terms of Service?

Legal agreements between a service provider and a user

What does agreeing to the privacy policy imply for a user?

A user acknowledges the service's collection and use of data

What type of updates will Zoom provide during the subscription term?

Standard updates generally available to all users

What does the lack of prior notice from Zoom in service modifications imply?

Services can be modified at any time without user consent

What can be inferred about the termination of services?

Services can be discontinued solely at the discretion of the provider

How are Terms of Service perceived in a legal context?

They are legally binding contracts between parties

Who is not eligible to use Zoom Services?

Persons who are not legally eligible to be bound by these terms

What does the term 'Affiliate' refer to in this context?

An entity that controls a Party or is under common control with it

What was the fine imposed on HIV Scotland for the email data breach?

£10,000

Which of the following principles ensures that data is processed securely?

Integrity and confidentiality

What is one of the system requirements for using the Services?

High speed Internet access is recommended

What does 'Service Effective Date' signify?

The date an Initial Subscription Term begins

What aspect of accountability is emphasized in the context of data protection?

The need for a data protection officer

What is typically included in an Order Form?

Additional terms and conditions regarding ordered Services

Which of the following is NOT a privacy right of individuals under the GDPR?

The right to a refund

In the case of British Airways, what was the reason for the reduction in their fine?

Economic impact of Covid-19

What is the implication of having outdated software for using the Services?

It may hinder your ability to access and use the Services

Which of the following is part of the definition of 'End User'?

A Host or Participant who uses the Services

Which right allows individuals to request deletion of their personal data?

Right to erasure

What principle under GDPR requires companies to be responsible for proving compliance?

Accountability

What responsibility do users have regarding system requirements?

To ensure their devices meet the changing system requirements

Which technology platform is mentioned as allowing users to download their data?

Instagram

What was the main reason for WindTre's €17 million fine?

Unsolicited marketing communications without consent

Which principle of the General Data Protection Regulation requires data to be collected only for specific legitimate purposes?

Purpose limitation

According to the General Data Protection Regulation, how should personal data be maintained?

Only as long as necessary

What is a requirement for ensuring the integrity and confidentiality of data under the General Data Protection Regulation?

Data must be processed securely

What does the accuracy principle of the General Data Protection Regulation require?

Personal data should be updated where necessary

Which action reflects a potential violation of the General Data Protection Regulation related to unsolicited marketing?

Calling users without their prior consent

How long must organizations respond to a personal data breach according to the regulation?

Within 72 hours

What is NOT a requirement of the data minimization principle?

Data should be excessive and redundant

Study Notes

Week 11: Social and Professional Issues of the Information Age

• The presentation covers data protection, privacy, and the history of data protection legislation.
• The key topic is the General Data Protection Regulation (GDPR).
• The presentation discusses the 2018 EU regulation on data protection and privacy.
• The GDPR defines how organizations process personal data.
• Personal data is defined as any information related to a natural person who can be identified, directly or indirectly.
• The presentation discusses the six principles of GDPR: lawful, fairness, and transparency; purpose limitation; data minimization; accuracy; storage limitation; and integrity and confidentiality.

Sneaky Responses

• Terms of service and terms of use are legal agreements between a service provider and a user.
• These agreements are legally binding, and companies can refuse to provide service if these terms are not met.
• The presentation gives examples like data sharing, subscription services and more.

Data Protection Act 1984

• The Act regulates automatically processed information relating to individuals and provides services regarding this information.
• It focuses on personal data concerning identifiable living individuals.
• The Act defines data subjects (individuals whose data is processed), data users (who process the data), and computer bureaux (who only process data).
• The Data Protection Registrar was responsible for promoting data protection and enforcing the Act.

Back in the 60s and 70s

• Information collection and distribution expanded from academic and military settings to commercial activities in the 1960s.
• The 1970s witnessed governmental centralization of information about individuals' private affairs.
• The Younger Report (1972) identified three primary concerns related to computer use:
  • Compiling personal profiles on single databases.
  • Data matching across multiple databases.
  • Unauthorized access to personal information.
• Sweden banned the export of Swedish personal data to the UK in 1974 due to the UK not having proper data regulation, classifying it as a "data haven".

Privacy

• Privacy encompasses three key aspects: freedom from intrusion, control over one's personal information, and freedom from surveillance.
• Privacy can be compromised when individuals share information with strangers in order to conduct transactions.

Previously

• Information collection and distribution became increasingly commercial.
• The UK was seen as a "data haven."
• The Data Protection Act 1984 was introduced. Companies had started using unfair or dishonest data collection techniques before the act.

Privacy Rights of Individuals

• Data subjects (individuals) have various rights under GDPR.
  • The right to be informed, access, rectification, erasure, restriction of processing, data portability, and object.
• The presentation also includes information about rights like the right to be forgotten. This includes the removal of personal information from services under specific circumstances, like when data is no longer needed, or consent is withdrawn, or information is unlawfully collected.
• The internet never forgets.

Description

This quiz covers crucial topics related to data protection and privacy in the Information Age, specifically focusing on the General Data Protection Regulation (GDPR). Learn about the principles of GDPR, its legislation history, and the implications of terms of service agreements. Test your knowledge on how organizations process personal data under these laws.