0
0
HLDsystem_design~5 mins

Data privacy and compliance (GDPR) in HLD - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepArchPracticeChallengeDesignRecallScale
Recall & Review
beginner
What is GDPR and why is it important in system design?
GDPR stands for General Data Protection Regulation. It is a law that protects personal data of people in the EU. In system design, it ensures that user data is handled safely and with respect to privacy.
Click to reveal answer
intermediate
Name three key principles of GDPR that affect system architecture.
1. Data Minimization: Only collect data needed.<br>2. Purpose Limitation: Use data only for stated reasons.<br>3. Data Subject Rights: Allow users to access, correct, or delete their data.
Click to reveal answer
beginner
What is 'data subject consent' and how should systems handle it?
Data subject consent means users agree clearly to how their data is used. Systems must get explicit permission before collecting data and allow users to withdraw consent anytime.
Click to reveal answer
intermediate
Explain the concept of 'data breach notification' under GDPR.
If personal data is leaked or accessed wrongly, GDPR requires notifying authorities within 72 hours and informing affected users quickly to reduce harm.
Click to reveal answer
advanced
How can system design support the 'right to be forgotten'?
Systems should allow users to request deletion of their personal data. This means designing data storage and backups so data can be fully removed without breaking the system.
Click to reveal answer
Which of the following is NOT a GDPR principle?
AData Minimization
BUnlimited Data Retention
CPurpose Limitation
DData Subject Rights
Under GDPR, how soon must a data breach be reported to authorities?
AWithin 72 hours
BWithin 24 hours
CWithin 1 week
DNo specific time
What does 'data subject consent' require?
ANo consent needed for personal data
BImplicit agreement by using the service
CExplicit and informed permission before data collection
DConsent only for marketing emails
Which system design feature helps support the 'right to be forgotten'?
AData encryption
BData anonymization
CData replication
DData deletion mechanisms
What is the main goal of GDPR in system design?
AProtect user privacy and data rights
BMaximize data collection
CIncrease system speed
DReduce server costs
Describe how GDPR principles influence the design of a user data storage system.
Think about what data you keep, how you get permission, and how users can control their data.
You got /5 concepts.
    Explain the steps a system should take when a data breach occurs under GDPR.
    Consider detection, communication, and prevention.
    You got /5 concepts.