Data Management Flashcards

1
Q

Can you tell me the three principles of GDPR?

A

GDPR - Lawfulness, fairness and transparency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Can you tell me the 7 principles of the Data Protection Act 2018?

A
Lawfulness, fairness and transparency.
Purpose limitation.
Data minimisation.
Accuracy.
Storage limitation.
Integrity and confidentiality (security)
Accountability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How do you comply with data protection in your role?

A

Data is stored on a secure property management system - which limits access to those who need to use it

I ensure that all data is stored here and not in common data folders, this is where personal data is stored and requires password access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How do you process and handle confidential information?

A

Control access.
Use confidential waste bins and shredders.
Lockable document storage cabinets.
Secure delivery of confidential documents.
Email encryption
Employee training

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What do the privacy and electronic communications regulations 2003 amended 2016 relate to?

A

Extra data protection rules for e-communications

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is copyright?

A

Author of original work has exclusive rights to control distribution

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the freedom of information Act 2000?

A
  • Right to information held by the public sector
  • Request must be in writing
  • Information must not be exempt
  • 20 Days to respond
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What legislation relates to the disposal of old files?

A

Limitation Act 1980

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How long do old files need keeping?

A

At least 6 years, 12 if a deed

ideally 15 for PII

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the difference between a deed and registered title?

A

A deed is absolute proof and title is good indication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What does encryption mean?

A

The process of converting information or data into a code, especially to prevent unauthorized access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How can you protect electronic data from viruses

A

Educate your employees about ransomware and phishing attacks.

Firewall/antivirus software.

Review your password policy and update if necessary.

Back up your important business data.

Test your backup and its restore capabilities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is Blockchain?

A

A system of recording information in a way which makes it difficult or impossible to change or hack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is a data controller?

A

Decides the purpose and manner that personal data is used

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Name some ways you ensure data security?

A
  1. Firewalls
  2. Password management
  3. Don’t leave devices unattended
  4. Encryption
  5. Virus protection
  6. Caution on sharing social media
  7. Back up data
  8. Automatic updates
  9. Two step verification
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What constitutes personal data?

A

information that relates to an identified or identifiable individual. What identifies an individual could be as simple as a name or a number or could include other identifiers such as an IP address or a cookie identifier, or other factors

17
Q

What is EDM and what does it do?

A

Electronic Document Management

Collection of tech which manages electronic assets

18
Q

Who owns the copyright of a valuation report?

A

The Surveyor - client is licensed to copy

19
Q

Key legislation in the UK relating to data protection?

A

Data protection act 2018

20
Q

What does GDPR stand for?

A

General Data Protection Regulation

21
Q

What legislation specifically relates to Data held by public bodies?

A

Freedom of Information Act 2000

22
Q

How must a FOI request be made and how long for a reply?

A

In writing

20 days

23
Q

Do public bodies need to reply to an FOI - any exceptions?

A

Yes have to reply - either with info or refusal (with explanation)

Refusal can be = to expensive, unreasonable or not in public interest

24
Q

How could a data system breach DPA?

A

“processed in a manner which ensures appropriate security”

Windows 7 came to the end of its supported life in 2020 and is therefore highly vulnerable to malware & ransomware attacks.

25
Q

In relation to your advice around changing operating systems what evidence did you rely on?

A

The system was already in place for my client so I had first hand experience.

The software provider is able to tailor the system to the needs of the user.

Windows 7

26
Q

How do you ensure data on your system is accurate?

A

There is a system in place to ensure data updates, for example a tenant leaves a premises we complete a record amendment form which our property information team input and double check. This is completed for all changes of data.

27
Q

What are the limitations of primary/secondary data?

A

Secondary data =
Information may be outdated, therefore inaccurate.
The data may be biased and it is hard to know if the information was collected is accurate.
The data was not gathered for the specific purpose the firm needs or is not relevant to the original context.

Primary Data =
Cost is one of the major reasons why researchers, and organisations will choose not to use primary research. …
Time
Feasibility

28
Q

What is malware?

A

Malware is a type of malicious software designed to harm or exploit any programmable device, service or network.

Used it to extract data that they can leverage over victims for financial gain.

That data can range from financial data, to healthcare records, to personal emails and passwords.