Page 88 - Cyber Warnings
P. 88
• Food and marketing preferences,
• Travel related profile (Frequent Flier details and preferences),
• Insurance agencies and intermediaries, Health advisors, Financial and Legal
representatives,
• Back ground checks and Recruitment history, Performance related records,
• Employee Share Purchase Scheme,
• Family and Relatives details,
• Religious, Philosophical beliefs,
• Racial or ethnic origin, Political opinions,
and any other sensitive personal data which uniquely identify an individual (can be
person or business)
And such “Personal Data” resides in any of the following formats -
1. Saved or recorded documents on computer systems,
2. Email,
3. Sound recordings,
4. SMS, or multimedia messages,
5. Encrypted tokens, Passwords,
6. Visual images,
7. Manual data including but not confined to correspondence
Key features of GDPR
1. It strictly imposes 72 hours’ time limit to report the data breach to your data protection
authority
2. It must be complied with from May 2018 onwards
3. It imposes hefty fines for non-compliance (refer Appendix A)
4. It puts responsibility on the Data Processor and Data Controller to demonstrate how they
fulfill the compliance requirements
5. Covers everyone who collects and/or processes the personal data
Data Protection - Principles
The following data protection principles form the foundation of the key features of GDPR -
Principle Description
Purpose Limitation That the collected data shall be only used for specified,
explicit and legitimate purposes and not processed in any
manner that violates the declared purpose(s)
88 Cyber Warnings E-Magazine – April 2017 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
