Data Management

Question 1

How do you handle data

Answer 1

1) inform client of how it is being stored
2) Password protect and encrypt
3) Ensure email’s only copy in relevant parties
4) Only transfer data with express permission
5) Correctly label data
6) Don’t leave paperwork on desk

Question 2

What do you do if data is breached

Answer 2

Inform Data Protection Officer within 72 hours describing the nature, type of breach, what it relates to likely consequences

Question 3

What act allows the disclosure of public body information

Answer 3

Freedom of information act 2000

Question 4

Why can’t rental evidence be handed over using FOI

Answer 4

It would prejudice a commercial interest

Question 5

What do you do if someone requested information

Answer 5

Forward onto FOI inbox where the Information Law and Disclosure team will respond

Question 6

What are the latest regulations on data protection?

Answer 6

General Data Protection Regulations 2018

Question 7

What was the aim of GDPR?

Answer 7

To give individuals greater control of their personal data and to ensure uniformity in the EU

Question 8

Who must all firms hire under GDPR?

Answer 8

Data protection officer

Question 9

What is personal data?

Answer 9

Personal data means any information relating to an identifiable person

Question 10

What procedures do you undertake when handling data?

Answer 10

1) Inform client of how it is being stored
2) Password protect and encrypt
3) Ensure email’s only copy in relevant parties
4) Only transfer data with express permission
5) Correctly label data
6) Don’t leave paperwork on desk

Question 11

What would you do if data has been breached?

Answer 11

Inform Data Protection Officer within 72 hours describing the nature, type of breach, what it relates to likely consequences

Question 12

What act allows the disclosure of public body information?

Answer 12

Freedom of information act 2000 and Commissioners for Revenue and Customs Act 2005 (CRCA) section 17-20

Question 13

Who does the Freedom of Information Act apply to?

Answer 13

Public organisations

Question 14

When can data be withheld under FOI

Answer 14

Where the release of information is said to compromise or damage a personal or commercial interest

Question 15

What Act allows the VOA to prevent the disclosure of information

Answer 15

Freedom of information act 2000 and Commissioners for Revenue and Customs Act 2005 (CRCA) Section 17-20

Question 16

What does EDRM stand for

Answer 16

Electronic Data and Record Management

Question 17

What did the commission of revenue and customs act provide

Answer 17

Provision for the use of information and the specific disclosure under certain circumstances

Question 18

What are the 6 principles of GDPR

Answer 18

• Lawfulness, fairness and transparency
• Used for specified explicit purposes
• Data minimisation by collecting what is necessary
• Accurate up to date info
• Kept for necessary period
• Kept in a way that ensures security and protection

Question 19

Why can rental information be divulged at VT

Answer 19

Under section 17 of the CRCA 2005 it is classed as in the course of Civil Proceedings and is therefore required to further progress the case. It is also stated in statute under section 17 of the Valuation Tribunal for England (Council Tax and Non domestic rates appeals) Act

Question 20

What did the Data Protection Act 2018 enforce

Answer 20

The General Data Protection Regulations 2018

Question 21

What rights are given under GDPR/ Data Protection Act (2018)

Answer 21

• Right to be informed
• Right of access
• Right to rectification
• Right to erasure
• Right to restrict processing
• Right to data portability
• Right to object
• Rights in relation to automated decision making and profiling

Question 22

How would you report a data breach

Answer 22

• Inform data manager within 72 hours
• Describe breach
• What data concerned
• What likely consequences
• How impact can be mitigated

Question 23

What does the Freedom of Information Act allow individuals to do

Answer 23

Request information from Public Bodies on data they may hold

Question 24

How can a FOI request be made?

Answer 24

• letter
• email
• social media
• online form
• fax

In the VOA any request is passed onto our FOI inbox in order for it to be dealt with

Question 25

Under what grounds can Public Bodies refuse disclosure of information under FOI

Answer 25

• Threat to national security
• Prejudice commercial interest of the public
• Prejudice public affairs
• Includes personal information
• Seemed to be excessive

Question 26

On what basis can information be disclosed under section 17 of the CRCA 2005

Answer 26

• To enable HMRC to carry out its functions.
• Where the person has given their consent
• Where confidentiality is overridden by legislation
• Where HMRC receives a court order to disclose information
• Where disclosure is made in order to prosecute.
• Where disclosure is in the public interest.
• Disclosure to the relevant prosecuting authorities.

Question 27

What are the security classifications for the government?

Answer 27

OFFICIAL- Typically given to most personal data which will need to be protected.

OFFICIAL SENSETIVE- excludes certain internal individuals from access

SECRET- which is very sensitive and could potentially cause harm to national security

TOP SECRET- information is the top level of security in which a breach could put many people’s lives at risk.

Question 28

What is GDPR consent and what are the 5 rules?

Answer 28

Accepting for a company to store and use personal information.

Consent can be given under 5 requirements:

1) Consent must be freely given
2) Consent must be specifically given
3) Consent must be made with correct information
4) Consent must be unambiguous
5) Consent can be revoked

Question 29

What is a record and what is a field?

Answer 29

Record is a single piece of data whilst a field is a group of records

Question 30

Have you ever used a .CSV file?

Answer 30

Yes exporting rental data onto an excel spreadsheet. I understand .CSV exports data from one application to another