Data Management

Question 1

What are some general sources of data?

Answer 1

• BCIS
• Comparable property prices, etc
• SPONS
• Internal libraries with previous projects
• Measurements
• Marketing particulars
• Client/personal data

Question 2

When did GDPR come into effect?

Answer 2

May 2018

Question 3

What is personal data according to GDPR

Answer 3

Any personal data relating to an identified natural person

Question 4

Who does GDPR apply to?

Answer 4

All entities and individuals based in the EU, or anyone that processes personal data of EU individuals

Question 5

What are the 6 principles of GDPR

Answer 5

1. Lawfulness, fairness and transparency.
   2.Accuracy. - keep up to date
2. Purpose limitation. - only use the data for its purpose
   6.Data minimisation. - only retain info you need
   5.Storage limitation. - Don’t hold personal data for longer than needed
   Accountability
3. Confidentiality.

Question 6

What happens if you fail to comply with GDPR?

Answer 6

1. Up to 20 million euro fine (£17.5) or 4% of global turnover (whichever is higher)

Question 7

Who is the controller?

Answer 7

they determines the purposes of any personal data and the means of processing it. .

Question 8

Who is the processor?

Answer 8

A person who processes the data on behalf of the controller

Question 9

What are the GDPR rights for individuals?

Answer 9

1. The right to be informed
2. The right of access
3. The right to rectification
4. The right to erase
5. The right to restrict processing
6. The right to data portability
7. The right to object.

Question 10

What do you do if you lose data?

Answer 10

You have to report yourself to the ISO within 72 hours if personal data has been lost

Question 11

What does ICO stand for?

Answer 11

Information commissioners office.

Question 12

What impact does covid-19 have on data management?

Answer 12

• Transportation of data
• Home working
• Cyber security
• Storing files online etc

Question 13

Whats the RICS latest guidance on conflicts of interests?

Answer 13

Conflicts of interest

1st edition, March 2017

Question 14

What do the ICO do?

Answer 14

Our role is to uphold information rights in the public interest

Question 15

Tell me about the Freedom of Information 2000

Answer 15

• Right to info in the public sector
• Request must be in writing
• normally the public body has to respond within 20 days

Question 16

What is a difference between DPA 2018/ UK GDPR and EU GDPR?

Answer 16

1. EU GDPR states that a child can consent to data processing at age 16, whilst the DPA/UK GDPR sets this at 13.
2. EU GDPR requires those processing criminal data to have official authority, the DPA/ UK GDPR does not.
3. DPA Sets out data protection rules for law enforcement authorities
4. Definition of personal data under EU GDPR can include IP address, DNA, cookies whereas the DPA is limited definition

Question 17

What is an identifier?

Answer 17

a name, an identification number, location data, an online identifier.

Question 18

Tell me about GDPR and DPA 2018?

Answer 18

The DPA 2018 sets out the data protection framework in the UK, alongside the UK GDPR.

The DPA 2018 sets out separate data protection rules for law enforcement authorities.

The UK GDPR is a UK law which came into effect on 01 January 2021. It sets out the key principles, rights and obligations for most processing of personal data in the UK, except for law enforcement and intelligence agencies.

Question 19

How do firms have to show accountability under GDPR?

Answer 19

Have to show if required to the ICO how they comply with the regulations