Data Management Flashcards

1
Q

How can you comply with UK GDPR when dealing with mailing lists?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What sort of information can a firm retain in order to comply with other laws?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What training have you undertaken on GDPR?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What systems does you firm have in place to ensure data security?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When collecting data how might you verify the authenticity of the data?

A

Through triangulation, by seeking the data out through another source. Or in terms of gathering from sites such a Rightmove, or Molior, I would verify the information by speaking directly to the agents involved.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What data security technologies are there?

A

Disk encryption - on a hard drive
Regular back ups off site
Password Protection
Use of Anti-virus software protection
Firewalls and disaster recovery procedures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is Copyright?

A

A set of exclusive rights granted to the author or creator of any original work, including the right to copy.
They can be licensed, assigned or transferred

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What regulations does the UK have for Data Protection?

A

the UK General Data Protection Regulation (GDPR) & the Data protection Act 2018

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does UK GDPR seek to achieve?

A

A single data protection regime affecting businesses and empowering individuals to take control of how their data is used.
It gives people rights to be informed about how their personal info is used.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are the key requirements of UK GDPR?

A

XXXXXX Page 42

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What must you/ your frim do if there is a data breach where there is a loss of personal data and a risk of harm to individuals? And what are the fines?

A

Data breaches like this, must be reported to the Information Commissioner’s Office (ICO) within 72 hours.
The fines are up to 4% of global turnover of the company or £17.5 million (whichever is greater).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the principles of the UK GDPR relating to personal data?

A

Article 5 (1) states personal data must be:
- Processed lawfully, fairly and in a transparent manner
- collected for specified, explicit and legitimate purposes, and not used for anything incompatible with this purpose
-Adequate, relevant and limited to what is necessary for the purposes
- Accurate and kept up to date
- kept in a way that enable identification for no longer than is necessary
- processed in a way that ensure adequate security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

what are the 8 Individual Rights under UK GDPR

A

1) Right to be informed
2) Right of Access
3) Right of rectification
4) Right to erasure
5) Right to restrict processing
6) Right to data portability (Use for their own purposes)
7) Right to object
8) Rights to automated decision making and profiling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

When was the Freedom of Information Act?

A

2000

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What dies the Freedom of Information Act do?

A

Gives individuals the right of access to information held by public bodies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What must the public bodies do if it receives a Freedom of Information request?

A

Tell any individual requesting sight of info whether it hold it
Normally required to supply it in 20 working days in format requested
It can charge for the provision of info

17
Q

What are the exemptions to Freedom of Information requests? (2)

A

1) If it is contrary to the GDPR requirements
2) It would prejudice a criminal matter under investigation

18
Q

How can you secure electronic data?

A

Firewalls, encryption and passwords

19
Q

How does a Non-Disclosure Agreement work?

A

An NDA is a legally binding contract that establishes an confidential relationship between parties, where they agree that sensitive information will not be made available to others.

20
Q

Proposed RICS Pro Statement?

A
21
Q

What is GDPR?

A

It is a legal framework which requires the safe handling and storage on personal information.

It came into effect on 25th May 2018

22
Q

What implemented GDPR in the UK?

A

The Data protection Act (2018)

Which replaced the Data protection act 1998.

23
Q

How does your firm conform to GDPR?

A

We employ a data controller
Provide data and information security training
Regularly update our privacy note