Data Management

Question 1

Can you give me examples of different types of instrumental readings you use to collect data?

Answer 1

Protimeter
Capacitence meter 
Borescope
Carbide meter
Hydrometer
Thermographic imaging
Core Test
Phenolphthalein solution

Question 2

what specific ISO procedure do C&W store their data and can you tell me about it?

Answer 2

C&W is - ISO 9001 certified (an independent 3rd party certification body audits C&W against the requirements) - this attracts clients and shows internal efficiency.

C&W are independently audited as part of a QA process. Under this ISO.

Question 3

What is ISO 9001?

Answer 3

• Is a quality management standard
• Is audited
• Improve customer satisfaction
• Continual improvement
• Customer focus
• Having file structure and audits
• Quality management

Question 4

what is ISO?

Answer 4

International Organisation for Standardization - 3rd party certification

Question 5

GDPR16?

Answer 5

EU regulation covering data protection.

Question 6

What is GDPR?

Answer 6

• Primary law surrounding data protection for European countries
• Consent is required for data use
• Sets standards for companies with how they handle the data of EU citizens

Question 7

Can you tell me about the Data Protection Act 2018?

Answer 7

Data Protection Act 2018 is the UK implementation of the GDPR 16

Provides additional requirements over and above GDPR.

Covers both personal data and general data (complete data protection system)

However, empowers individuals to take additional control over how their data is used by 3rd parties

Question 8

Will GDPR still apply after Brexit?

Answer 8

• Yes as part of Data Protection Act 2018

* Also if trading with EU countries

Question 9

What must firms do to comply?

Answer 9

• Register annually with the Information Commissioners Office with an annual fee

Question 10

Key Requirements of GDPR

Answer 10

Statute requirements:
ASSESSMENT
- obligation to conduct data protection impact assessments

RIGHTS TO ACCESS
- rights for individuals to have access to information on what personal data is held and to have it earased

DATA CONTROLLER
- desides how and why personal data is processed and is responsible for GDPR

ACCOUNTABILITY
- Must prove to the Info commissioners office how they comply

BREACHES
- must be reported to Info commissioners officer in 72hrs

FINES
- up to 20million euros or 4% turnover (whichever is greater).

DATA PROTECTION OFFICER
- companies employing > 250 employees are required to appoint data protection officer if their core activities include data procession e.g. C&W agency team who send out marketing materials.

Question 11

Under GDPR16, how must companies store personal data? (STARTL)

Answer 11

• Secure
• Time (only kept for required time)
• Accurate
• Relevant
• Transparent
• Legitimate

Question 12

Can you name the new 8 individual rights under GDPR?

And / or

What rights must companies grant individuals under the new GDPR?

RIPE ROAD

Answer 12

right to rectification
right to be informed
right to portability (use for their own purposes)
right to erasure

right to restrict processing
right to object
right to access
right to automated decision making and profiling (as undertaken by insurance companies).

Question 13

How has GDPR affected you in your personal and professional life?

Answer 13

Professional:
* I deal with clients basic personal information for the purpose of invoicing

• I request the client fills in C&W standard ‘Customer Information Form’
• This form highlights that their information will be kept in accordance with GDPR16
• I am also aware that in May 2018 C&W wider business gave clients/perspective clients the ability to ‘opt-out’ of marketing information.

Personal:
Provided me with rights to how companies use my data

Question 14

How do you comply with GDPR?

Answer 14

I ensure that any cleint data is correctly handled

• Store data in a secure way
• Be able to provide to client all information I have for them
• Remove data if requested

Question 15

What would happen if there was a serious breach in GDPR?

Answer 15

• Notify the ISO in 72 hours

Question 16

Are you aware of the Freedom of Information Act 2000?

Answer 16

Gives individuals the right to access information held on public bodies.

Question 17

If using financial or cost data that is historical, what risks are attached to using such data?

Answer 17

In addition to permission, the data is likely to be inaccurate as costs fluctuate.

Other than revaluating individual items, you could multiply by the percentage downlit/uplift in course in relation to the Tender Price Index (TPI).

Question 18

Tell me about Data Management in C&W?

Answer 18

• use firewalls, encryptions and passwords.
• secure login to mobiles and remote computer access.
• password must be changed regularly

Within the office we have:

• a separate floor for external meetings,
• Policy of challenging any people within the office who are unescorted and unknown to us
• a clear desk policy.
• Have a data protection office

Question 19

What is the tender prince index?

Answer 19

Tender price indices allow tenderers and clients to see how tender prices for building contracts are changing. The indices may be used in estimating, cost-checking and fee negotiation with reference to particular sectors e.g private housing, commercial work etc.

Question 20

How will Brexit affect GDPR?

Answer 20

• GDPR is EU regulation and in principle, it will no longer
  apply to the UK from the end of the transition period.
• GDPR is implemented by our Data Protection Act 2018
• Also still apply where working with Europe