Data Management Flashcards

1
Q

Gives me some examples of the principles of data management

A
  • Data policy, broad high level principles forming framework
  • Data ownership. Clear identification of data owner
  • Appropriate metadata. Data about data
  • Data quality. Able to integrate data with other data sets
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Why does the data protection act 2018 exist?

A
  • Required to protect personal data and privacy of UK citizens. Covers all companies that deal with data of UK citizens.
  • Safe guards information ie name, address, financial details, religion etc.
  • Data must be collected and used fairly. Only be held and used for the reason given.
  • Must be accurate and up to date, not kept for longer than necessary
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What body is responsible for enforcing GDPR & Data Protection Act?

A

European commission & information commissioner

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does free of information Act enable?

A

Creates public right of access to information held by public authorities. Enforced by Information commissioners office

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

How do you ensure the data that you hold is kept secure and confidential?

A

Password protected files, never leave laptop unattended and unlocked. Only use data I need to not expose anything confidential.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How do you ensure only necessary people have access to data stored on shared drives?

A

I set up passwords to access files which are shared with relevant persons. I request IT give permission to only certain people

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How long do you keep clients data and how do you ensure it is deleted when necessary?

A

I keep data only as long as needed. I delete anything I do not need. I set reminders at end of projects to review information and whether it can be deleted yet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What was the main change to the GDPR regulations in 2018?

A

Restrictions on personal data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Where would you find out about GDPR updates etc?

A

Information Commissioners Office (ICO)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is highly protected data under GDPR?

A

Race, health, sexual orientation, sex, religion, political opinion, genetic data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the 6 key principles of the DPA and GDPR?

A
  • information used lawfully, fairly and transparently
  • collected for legitimate purpose
  • adequate and relevant
  • accurate
  • kept safe
  • kept no longer than necessary
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are some individual rights under the GDRP and DPA?

A
  • informed
  • access
  • erasure
  • object
  • restrict processing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Who enforces the Data Protection Act 2018?

A

Information Commissioners Office

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is the link between the DPA and GDPR?

A

GDPR is European directive, DPA is UK interpretation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How does the DPA apply to the way NHBC handle personal data?

A

7 key principles. We make sure data is secure and safe etc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

For how long do you keep clients details?

A

15 years. This is due to the PII, 6 years underhand, 12 years under deed, 3 years for remediation

17
Q

How do you keep project information in your company?

A

On a shared drive with restricted access

18
Q

What are the fines involved with failure to comply with DPA legislation?

A

4% of global earnings or £17.5million/ 20 million euros

19
Q

What should you do if you have a data breach?

A

Notify Information commissioners office and affected party within 72 hours

20
Q

What are the special characteristics of the Data Protection Act 2018?

A

Sex, religion, political view, trade union, race, genetic data, health data, biometric data, sexual orientation