CIMA E1 Syllabus B. Technology In A Digital World - GDPR - Notes ^{3 / 5}

GDPR

Organisations hold a huge amount of data, therefore the privacy, sensitivity and security of the data is a major concern in modern business. 

The GDPR (General Data Protection Regulation) legalisation has the following principles to guide the use and hold of personal data:

1. Used fairly, lawfully and transparently

2. Held and used for valid, specified and explicit purposes

3. Used in a way that is adequate, relevant and limited to only what is necessary

4. Accurate and, where required, kept up to date

5. Kept for no longer than is necessary

6. Handled in a way that ensures appropriate security.