Year 10 - GDPR and Computer Misuse

GDPR stands for:

The Data Subject is...

The Data Controller is...

The Data Processor is...

In smaller organisations it is possible for the Data Controller and Data Processor to be the same person.

How would you rate your knowledge of GDPR? Options: 1 - I don't understand it at all, 2, 3, 4, 5 - I understand it perfectly

How would you rate your knowledge of the Computer Misuse Act (1990)?

Decide if the following story breaks either GDPR or the Computer Misuse Act: Emily leaves her computer unattended while on her break. Her co-worker Bob then gains access to the computer and makes copies of all of Emily's files.